Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Using CodeIgniter Installation & Setup Security: Moving application and system folder out of public_html
Security: Moving application and system folder out of public_html
  • Offline kilishan
    CI Project Lead
  • *******
  • Posts: 1,461
    Threads: 90
    Joined: Oct 2014
    Reputation: 120
#3
05-10-2017, 09:34 AM

(05-10-2017, 03:20 AM)moinchoudhari Wrote: Hi,
Does it increase the security if I move the application and system folder out of public access to server root?

It increases security in the case that you have an accidental mis-configuration of the server that might allow access to things that shouldn't. So, it's more of a safeguard against human error.

[/quote]
Also, is there anyway we can use password other than the plain text in database config and email config?
At present, if someone hack the system and manages to get the above file they will easily get access to the database.
[/quote]

Nope. If we encrypt the values in such a way that it can be reversed (which it would have to if the system is able to connect to the database) then an attacker could easily un-encrypt it. A little exploration and they'd easily find the method if they are on your server.
Support Development •  CodeIgniter 4 Foundations • Practical CodeIgniter 3  • CodeIgniter Tutorials
Reply


Messages In This Thread
RE: Security: Moving application and system folder out of public_html - by kilishan - 05-10-2017, 09:34 AM



Theme © iAndrew 2016 - Forum software by © MyBB