[TYPO3-dev] passwords in ext_conf_template.txt
Søren Schaffstein
soeren.schaffstein at media-lights.de
Wed Apr 25 11:07:19 CEST 2007
Oh I'm not really worried about admins - since they can access it anyway.
I just thought of a password field helping to protect the password from "very
easy access". But since this seems impossible by now I just use a textfield
and live with it.
Thanks everybody!
> Kitsunet (Christian Müller) schrieb:
>
>> Well it wouldn't help anyway. It just obscures the PW, but anyone
>> having Admin Rights in TYPO could get it anyway. The PW would need to
>> be stored in cleartext into the Configuration, hash is not possible,
>> and as an Admin I usually (at last with help of quixplorer or
>> similar) can read Configuration. So even if the PW was obscured by a
>> PW field any Admin could find it out if he wants to...
>>
> Store it as a TYPO3_CONF_VAR - disable the install tool AND
> Tools->Configuration.
>
> My only idea... or include a file from outside ANYTHING TYPO3 can
> read.
>
More information about the TYPO3-dev
mailing list