Answer the question
In order to leave comments, you need to log in
Is it safe to provide access to yii config files from the web interface?
Now I'm thinking about how to organize the storage of parameters configured by the site administrator.
To store in a DB I consider not the decision, optimal on productivity. Store in php files - it will give a gain in speed, but, in my opinion, it can affect security. I would like to know how safe this approach to storing the configuration is?
Answer the question
In order to leave comments, you need to log in
The configuration files themselves are not safe. It is necessary to somehow check for validity, so that it would not be possible to change the code itself.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question