Community

    • Login
    • Search
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Search

    .bak file - security risk

    Security
    2
    2
    84
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Robbert Jan van der Meer
      Robbert Jan van der Meer last edited by

      Hello,

      The back-up file is automaticly created, but when programming with for example a file like “config.php” where you store passwords, the back-up file, also uploaded is readable trough the web. So your passwords are free to grab. “config.php.bak” wont act like a php file, so is plain text.

      I think this is a big security risk.

      Regards,

      Ekopalypse 1 Reply Last reply Reply Quote 0
      • Ekopalypse
        Ekopalypse @Robbert Jan van der Meer last edited by

        @Robbert-Jan-van-der-Meer

        Then don’t upload it?!!
        And storing passwords in plain text in files is not what you should do anyway.

        1 Reply Last reply Reply Quote 3
        • First post
          Last post
        Copyright © 2014 NodeBB Forums | Contributors