Would it be wise to chmod 600 your database.yml file using Capistrano when deploying seeing as it contains your mysql db in plain text?
~ Mark
If your web server software is running under a different user id, wouldn't that make it unreadable?
Eno wrote:
If your web server software is running under a different user id, wouldn't that make it unreadable?
I guess! But couldn't you just change the ownership of that file to the application server process (e.g. mongrel) and then it wouldn't matter if no other users could read it?
Sure, if you have root access you can chown the file but you probably won't have root access on a shared server.
