Can somebody please look at the configurator security?
I assume that anybody has access to the ADMIN and DSN passwords
by using the configurator url.
How should that be solved? Kind'a bootstrapping problem.
httpauth for this file only?
remove it after successful installation?
--
Reini Urban
http://xarch.tu-graz.ac.at/home/rurban
http://phpwiki.org
|
