Ok thanks guys! So I can fix the issue myself by editing that code you supplied, Leonel?
I submitted the issue here: https://github.com/web2py/web2py/issues/820 Niphlod, actually the password is store in the filename, so anyone who has access to the file system would be able to read it. To read db.py Den tisdag 24 februari 2015 kl. 21:36:49 UTC+1 skrev Niphlod: > > +1 for handling consistently cache keys, but I'm not an advocate of > "security by oscurity". > File names in the cache folder aren't supposed to be read, and are not > visible to anyone if not the administrator of the server. if access is > granted to anybody, the password can be retrieved looking at models/db.py > too :P > > -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
