Add to Favorites
Hosting Discussion
 

Hosting Discussion > Web Hosting Forums > Hardware and Server Configuration > [phpPgAdmin] Plaintext Password Vulnerability
forgot password?


Reply
 
LinkBack Thread Tools


Old
  Post #1 (permalink)   01-25-2002, 09:09 AM
HD Addict
 
Homer's Avatar
 
Join Date: Jan 2002
Posts: 122

Status: Homer is offline
phpPgAdmin is a freely available tool that provides a WWW interface for handling PostgreSQL adminstrative tasks. It is derived from phpMyAdmin, which is used for MySQL administrative tasks.

Authentication credentials for the database's standard user are stored in the configuration file of the phpPGAdmin tool. This information is stored in plaintext and may be viewed by local attackers.

This is only an issue when using phpPgAdmin's advanced authentication feature.
 
 
 


Old
  Post #2 (permalink)   01-25-2002, 04:10 PM
HD Newbie
 
Join Date: Jan 2002
Location: Michigan
Posts: 5

Status: ljprevo is offline
Are you talking about when logging in?

If so put it behind a SSL.
__________________
L. James Prevo
The Prevo Network
http://www.prevo.net
"The Place Where We Unlock Your Doors to the Net!"
 
 
 
Reply

Thread Tools

New Post New Post   Old Post Old Post
Posting Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On




Contact Us | HostingDiscussion.com | Advertising (with spam verification) | Archive

© 2000-2008 HostingDiscussion.com. All right reserved.
Web Hosting by Micfo.com
All times are GMT -6. The time now is 10:44 PM.
Powered by vBulletin® Version 3.6.8
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.1.0