Hi, what is exactly not secure when config.inc.php is writable by the server. Is everything more secure if config.inc.php is readonly but core/oxconfig.php is writable by the server?..
Best regards, Aurimas On Tue, Aug 3, 2010 at 3:32 PM, Michael Zender < [email protected]> wrote: > Hi, > > I also think that wrong file permissions should be marked as un-met system > requirements (at least not if the shop works with these 'wrong' settings). > Giving a hint on the potential security risk would be more appropriate in my > opinion. > > Best regards, > > Dipl.-Ing. (FH) Michael Zender > Development eCommerce > Technical Project Lead > > MOS-TANGRAM AG > Wohlerstrasse 2 > CH-5623 Boswil > Phone: +41 (0)56 677 82 20 > Fax: +41 (0)56 677 82 99 > E-Mail: [email protected] > Internet: http://www.mos-tangram.com > _______________________________________________ > dev-general mailing list > [email protected] > http://dir.gmane.org/gmane.comp.php.oxid.general > _______________________________________________ dev-general mailing list [email protected] http://dir.gmane.org/gmane.comp.php.oxid.general
