Y
Hacker News
new
|
ask
|
show
|
jobs
by
m_eiman
6251 days ago
It prevents you from getting the passwords with an SQL injection attack (or by reading the users.txt or whatever storage is used for the user list), so it does add protection.
1 comments
Hexstream
6251 days ago
Ok, I was assuming the attacker had full access to the server.
link