apps_instance_setting database storing details in plain text
I was just browsing through the ispconfig database files and came across something rather disturbing. When a client has used the apps installer to setup wordpress, joomla or other available app the details are stored in plain text!! I can read usernames and passwords without even thinking about cracking! (not that i would want to anyway)
I see this as somewhat a bit of a security vulnerability especially if the database were to become compromised, can it be set so that it at least gets run through md5 before being stored