SECURITY ISSUE: Passwords stored in plaintext in DBLog.txt
After the installation of SD 6, I looked through some of the log files because the engine would not start. Within the DBlog.txt file, I saw that the password for the login used to configure the database is stored in plaintext in two places.
It is not the largest security issue, since a person would have to a) be able to access the server locally or via default share, or b) be able to browse files via a web browser, but it is still not a good thing.
It is not the largest security issue, since a person would have to a) be able to access the server locally or via default share, or b) be able to browse files via a web browser, but it is still not a good thing.