It's really not a security issue. The wp-config.php file is not accessible via the WP back end interface. In fact the only way you can access it is via the server. And if someone has gotten access to the server to read your wp-config.php file, you have a lot more to worry about than just a plain text password.
↧