[TYPO3-english] OT: Re: Have I been hacked? Please help.
Andreas Becker
ab.becker at web.de
Mon Mar 21 07:39:48 CET 2011
My talking Thanks Georg :-)
On Mon, Mar 21, 2011 at 1:15 PM, Georg Ringer <mail at ringerge.org> wrote:
> Hi Andreas,
>
>
> Am 21.03.2011 03:55, schrieb Andreas Becker:
> > Yes it is the common way to use install tool or localconf.php but you
> have
> > forgotten the most important part - The database itself!
>
> yeah of course, if you got access to the system itself, there is no need
> to hack anymore as you can just write a query statement in the index.php
> too.
>
> > It is not a secret that all php applications (not only those!) store the
> > database name and the database password as a clear readable text message.
>
> of course, if the localconf.php or any other php file can be edited, you
> have lost the game.
>
> Georg
> _______________________________________________
> TYPO3-english mailing list
> TYPO3-english at lists.typo3.org
> http://lists.typo3.org/cgi-bin/mailman/listinfo/typo3-english
>
More information about the TYPO3-english
mailing list