Quote:
Originally Posted by Clauu
Yes but that cvars must be defined somewhere right? So its just a matter of time until that sensitive data will be founded and then used in a negative way.
|
Well, clearly in the OPs situation cvars is not the answer however, in most situations where there is only one user of a database and you don't want it hardcoded the method is to use cvars. If someone hacks into the FTP (the only place the cvars are in plain text) then that's a whole different story.
__________________