ahh! thanks for clearing that up! it took a while to get it through my thick paranoid skull.
you can't see the contents through a browser but you can save the file on your local machine and open and read the contents of the file. voila, you have user name and password to mysql dbs.
Thanks for your input. I'm just worried because someone could very easily request that file through http (not ftp) and open it up in any text editor and have your database password.