Jump to content

Recommended Posts

How safe is to rely on codeigniter own encryption key..?
If you used encryption key do you have to encrypt the config.php file?

Any ideas aside from storing the key into the db then loading it to the config.php which in turn might pose a bit of performance issue but still might be better solution...

Link to comment
https://forums.phpfreaks.com/topic/276375-codeigniter-security-safety/
Share on other sites

Why would you imagine you'd need to encrypt the config file? If somebody has access to your server files, they wouldn't need to know your encrypt key to access the information that would be encrypted anyway. I think your paranoia has blinded your thought process.

Ya I agree I am a bit paranoid though I still think it s a good Idea if you store the encryption key in the db and encrypted since most of us are on reseller or web hosting servers..


About encrypting the config file!!! many times I had access to web servers either for new web making or editing and like everyone you ll have access to all users 's files on that server... this is my main concern...

Edited by GD77
This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.