Updated SQL creation script to flag password should be changed, and changed

INSTALL to note how important password protection of the pages is.
author: Ian C <ianc@noddybox.co.uk> 2018-06-27 15:19:34 +0000
committer: Ian C <ianc@noddybox.co.uk> 2018-06-27 15:19:34 +0000
commit: 9bd1ad2bfb807d7714e17112a9dc51f2416a1e6c (patch)
tree: 4985c14c8a8d7010b1d9686d11e7555c07fe1dd8 /INSTALL
parent: d750c1a34d4c344154cd0abaa3aa6e9021335318 (diff)
1 files changed, 7 insertions, 4 deletions
diff --git a/INSTALL b/INSTALL
index 63a25b5..885e59e 100644
--- a/INSTALL
+++ b/INSTALL
@@ -6,10 +6,13 @@ sql/
 
 www/
 	Holds the web site.  This directory should be copied somewhere and
-	configured to be served up, password protected.  How this is
-	accomplished will differ from web server to web server.  It is
-	recommended to run the site over HTTPS to prevent the password being
-	easily sniffed.  The web server must be able to execute PHP.
+	configured to be served up, which MUST be password protected.  This
+	password protection is the only thing stopping a third party accessing
+	your data.  While they would need to know the passphrase to see your
+	passwords, anyone accessing the site can delete and edit entries.
+	How this is accomplished will differ from web server to web server.
+	It is recommended to run the site over HTTPS to prevent the password
+	being easily sniffed.  The web server must be able to execute PHP.
 
 	config.php should be edited and the instructions followed for each
 	config item.
author	Ian C <ianc@noddybox.co.uk>	2018-06-27 15:19:34 +0000
committer	Ian C <ianc@noddybox.co.uk>	2018-06-27 15:19:34 +0000
commit	9bd1ad2bfb807d7714e17112a9dc51f2416a1e6c (patch)
tree	4985c14c8a8d7010b1d9686d11e7555c07fe1dd8 /INSTALL
parent	d750c1a34d4c344154cd0abaa3aa6e9021335318 (diff)