On 10/12/07, Maria McKinley <[EMAIL PROTECTED]> wrote: > > Yes, I suppose if they could look at /tmp they could also look at > config.php, and get my admin password, which probably should not be > written out in plain text on the server either.
FWIW cleartext passwords in config.php are avoidable if you use ?action=crypt and paste crypted passwords into the file. http://pmwiki.org/wiki/PmWiki/PasswordsAdmin#crypt http://php.net/crypt Hagan _______________________________________________ pmwiki-users mailing list [email protected] http://www.pmichaud.com/mailman/listinfo/pmwiki-users
