javascript - Can people who visit your website easily see your entry file if they don't have a backend password?
typecho2017-06-22 11:54:35
0
5
832
Like this, if I put the database password in the entry file, is it safe? If it is not safe, then how to put the generally more important information more safely?
Unless you make the file that stores the database address/user name/database name/password public, or you leak the server password and other extreme circumstances (if you don’t have any security awareness)...otherwise you won’t be able to see it.
It is not safe. Writing such sensitive information in the code will risk being exposed by version control tools. It is generally better to use a separate configuration file or environment variable
Don’t write your password in the code. If you submit it to a public code base, it will be seen by others. Searching for password in github will bring up a lot of information
This password leak has no impact on your project, but it will be troublesome if it happens to be a password you often use
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
No, unless I can see your source code
The code is parsed on the server side and will not be exposed to the front end
Unless you make the file that stores the database address/user name/database name/password public, or you leak the server password and other extreme circumstances (if you don’t have any security awareness)...otherwise you won’t be able to see it.
It is not safe. Writing such sensitive information in the code will risk being exposed by version control tools. It is generally better to use a separate configuration file or environment variable
Don’t write your password in the code. If you submit it to a public code base, it will be seen by others. Searching for password in github will bring up a lot of information
This password leak has no impact on your project, but it will be troublesome if it happens to be a password you often use