Re: How to secure database info in database.php

It's a good practice to restrict the permissions of the file, so that
only the users who need access to it can read or write it, for
instance your apache user.

Even if regular users can not access what is behind your web server
it's not enough, seems that other responses assume you are the only
one that can log in into a shell, cd to your config folder and see
what is there, but it might not be the case. In a shared environment
having incorrect permissions in the config files can be a big security
hole.

Regards

On 11 jun, 21:25, monish001 <monish.gup...@gmail.com> wrote:
> Hi
>
> I am making my first app using cakephp.
>
> Cakephp uses database.php to store database info. Do we need to take
> some steps to secure database info in database.php?
>
> Regards
> Monish

--
Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org
Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions.

To unsubscribe from this group, send email to
cake-php+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php