[TYPO3-english] OT: Re: Have I been hacked? Please help.
Georg Ringer
mail at ringerge.org
Mon Mar 21 07:15:59 CET 2011
Hi Andreas,
Am 21.03.2011 03:55, schrieb Andreas Becker:
> Yes it is the common way to use install tool or localconf.php but you have
> forgotten the most important part - The database itself!
yeah of course, if you got access to the system itself, there is no need
to hack anymore as you can just write a query statement in the index.php
too.
> It is not a secret that all php applications (not only those!) store the
> database name and the database password as a clear readable text message.
of course, if the localconf.php or any other php file can be edited, you
have lost the game.
Georg
More information about the TYPO3-english
mailing list