Closed Bug 483875 Opened 16 years ago Closed 16 years ago

Socorro UI: database connection problem reveals database password to all

Categories

(Socorro :: General, task)

Product:
Socorro
Component:
General
Platform:
x86
Linux
Type:
task
Priority:
Not set
Severity:
major

Tracking

(Not tracked)

Status:
RESOLVED WONTFIX

People

(Reporter: lars, Unassigned)

Details

Attachments

(1 file)

screen capture of SocorroUI showing the database password in plain text
142.44 KB, image/png
Details
granted there was a misconfiguration, but when connecting to the database, there should be a zero percent chance that a failure to connect should hand a password out to the public...
Was this file in production changed recently? webapp-php/application/config/config.php It is not under source control. I will try to repro issue to confirm that this file is what triggers this behavior.
Please get a copy of production webapp-php/application/config/config.php Which will have settings including: $config['display_errors'] = FALSE; which is an important part of a prod Kohana app.
Status: NEW → RESOLVED
Closed: 16 years ago
Resolution: --- → WONTFIX
This can't happen in prod because debugging is disabled (errors don't appear). So I'm not sure this is a bug?
Damn... mid-aired.
Component: Socorro → General
Product: Webtools → Socorro
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: