Topic: Security of SQL database username and password
I installed PunBB this week after my phpBB board was hacked. Also, like many people on here, I was fed up with fake registrations and with spammers being able to put a URL in their public profile before confirming their account. Something that was brought to the attention of the developers of phpBB ages ago but still hasn't been resolved.
I am really liking PunBB so far. Particulary the speed and small size. But one issue I do have is the security of the SQL database and password as this is stored in config.php in a public area.
Also I wonder why boards don't provide the option to just switch off showing the last registered user and members list? As that would solve the problem of 'rude' usernames.