holy moses batman
I just checked a regular phpinfo.php and under the "Environment" section the mysql_pwd is shown.
So any client on the server can get into the system/mysqlserver with root access. How about that.
Please tell me how to resolve this and what else I have to check so this can never happen again. Who knows what information comes up if the phpinfo.php has a few different lines in them which I am not aware of.
I have a default install of centos 5.1 and virtualmin pro
thanks
Status:
Closed (fixed)