[TYPO3-dev] passwords in ext_conf_template.txt
Mathias Schreiber [TYPO3]
mathias at typo3.org
Wed Apr 25 09:38:34 CEST 2007
Kitsunet (Christian Müller) schrieb:
> Well it wouldn't help anyway. It just obscures the PW, but anyone having
> Admin Rights in TYPO could get it anyway. The PW would need to be stored
> in cleartext into the Configuration, hash is not possible, and as an
> Admin I usually (at last with help of quixplorer or similar) can read
> Configuration. So even if the PW was obscured by a PW field any Admin
> could find it out if he wants to...
Store it as a TYPO3_CONF_VAR - disable the install tool AND
Tools->Configuration.
My only idea... or include a file from outside ANYTHING TYPO3 can read.
More information about the TYPO3-dev
mailing list