WordPress.org

Ready to get started?Download WordPress

Forums

How to encrypt database password in wp-config.php? (5 posts)

  1. shailesh.deodhar
    Member
    Posted 11 months ago #

    I tried a lot to find if there is any way to encrypt database password which is stored in wp-config.php file?

    Thanks in advance!

    Shailesh

  2. leejosepho
    Member
    Posted 11 months ago #

    This is as close to an answer as I could find, but I am not sure it actually is one:
    http://stackoverflow.com/questions/16012314/how-do-i-encrypt-a-password-in-wordpress-using-wordpress-salt

    The consensus seems to be that a strong database password is secure just as it is unless someone can get to wp-config via FTP. I recently changed my database names, table prefixes, usernames and passwords, and I keep wp-config permissions set to 0400.

  3. esmi
    Forum Moderator
    Posted 11 months ago #

    Why bother? If someone has access to your server, your site is already toast.

  4. leejosepho
    Member
    Posted 11 months ago #

    Why bother? If someone has access to your server, your site is already toast.

    At least in theory, maybe some sensitive data would still be secure even though the site was already toast?

  5. esmi
    Forum Moderator
    Posted 11 months ago #

    With full server access, it wouldn't take long for a half-decent hacker to gain entry to the database - even without a plain text password.

Reply

You must log in to post.

About this Topic