Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Allow Setting MySql passwords for each database. (OUTDATED)

Please @Admin let us set custom MySql database passwords. I don't like fact that MySql password is same as my control panel password, because some CMS and PHP softwares have wrong PHP permissions for config files, and config files store MySql info, and it means that if a Infinityfree user has a unsecure CMS or PHP software in he's site, a cracker can easily get it and in same time get acess to control panel and do malicious and bad things to our websites!

[OUTDATED, OLD TOPIC, PLEASE DO NOT NECRO-BUMP THIS]

Comments

  • Please @Admin let us set custom MySql database passwords. I don't like fact that MySql password is same as my control panel password, because some CMS and PHP softwares have wrong PHP permissions for config files, and config files store MySql info, and it means that if a Infinityfree user has a unsecure CMS or PHP software in he's site, a cracker can easily get it and in same time get acess to control panel and do malicious and bad things to our websites!

    On a well configured website with secure software, database credentials should never be able to leak out so it's not that much of a problem in practice. If you do insist on having separate database users for every database, please consider an upgrade to premium hosting. With it, you can add as many database users as you want and even limit which permissions they have over certain databases.

  • Really? Paid hosting for that? That's a deal-breaker... you've lost me as a client, if that will not be implemented in a few days... I already started looking for alternatives. And I think @bbot22 is already doing that, since a few months ago... but I might be wrong...

  • @Sapioit You don't have to worry about anything :). As long as your hosting account password is secure, hackers won't be able to do anything with your database password. Database acess is restricted only from our servers which means even if hacker got your Database password they wouldn't be able to do anything with it.

    If your hosting account password is secure enough, everything else will be secure enough too! So no need to leave our hosting.

This discussion has been closed.