Security question

  • streamworksaudio

    (@streamworksaudio)


    3 years, 11 months ago

    Hi,

    First off I would like to thank you for this awesome plugin. It has made adding little features here and there much easier to do dynamically.

    I have a question about security. Several times I have seen plugins suggest the idea of placing constants (API keys etc) in the wp-config.php file as it is more secure than placing them in the database as an option (for example WP Offload SES suggests this).

    I was wondering if setting these constants in a Code Snippet would be less secure than if they were set in the wp-config.php

    Cheers

Viewing 1 replies (of 1 total)
  • Plugin Author Shea Bunge

    (@bungeshea)

    3 years, 11 months ago

    It really depends on who has access to your site. Snippets are only accessible to WordPress Administrators, while typically accessing wp-config.php means you have access to the server filesystem.

    It’s really down to how you have your site set up and who has access to what that makes one of those locations more or less secure than the other.

Viewing 1 replies (of 1 total)

The topic ‘Security question’ is closed to new replies.