Move and or Rename config.php
 

What does this do?
This mod allows you to move your config.php file for added security.

Version Compatibility
3.5.4+, 3.6.0 Gold+


4/18/2006 - 1.0.1 update
fixes for file changes in the newest version of diagnostic.php, no other changes

I take no credit for this mod by Zachery and have ported it with permission.
vb 3.0.x version here

file edits:2

I don't know why you would want to do this, as long as you have the config file's permissions decently set, there is no need for this. I mean, I would do this if I could without file edits, but doing all those edits is not worth my while.

:\

i think this is a great idea... anything to stump someone trying to hack your web site.

thanx

If your webserver is setup correct, nobody can download (or alter) and .php file. So i also don't really see the use of this.

Well for those who might not know if its setup correctly, or even shared hosts, this seems like a fairly sane thing to add a bit more assurance.... Fair enough everyone? ;)

dont blame proto, blame Zach, he made it 1st :p

So . . . for those people who think this is overkill . . . why don't you list the steps a novice Unix/Linux board owner should take to ensure that the config.php (containing the DB name, DB user name, Password) cannot be ripped by a hacker?

Or point to a post that details the nuts and bolts.

As for me, I keep all my sensitive stuff behind the scenes as a matter of course.
Most tools, like automated backup scripts for example, enable you to reference your settings away from the publicy accessible areas.

Who the heck knows when some warped genius will publish/sell techniques that invalidate access settings that we currently set up via chmod.

this only takes 2 file edits.. shall do

Hello

what happens during upgrade do I have to move back config.php

thanks

yes, you need to move back the config.php to includes. then after you've upgraded, completed the file edit, you can move it back to wherever