tags 321529 -wontfix thanks, Hello Onno, > The /etc/phpmyadmin/config.inc.php file is readable by anyone who can run CGI > on server. The changing for file's permission does not improve security too > much. This file shouldn't contain the passwords at all. So you have 'cookie' > authorization module. I agree with Piotr's assertion that it would not be right to change the permissions of the config file by default. However, I will add a note to the file that advises not to put sensitive information into it or if you really want to do that, to take care that the file is properly secured.
Thijs -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
