Encrypt Stored/Configuration Files

The stored files / configuration files of a web application often contains connection information about the databases, such as Name, IP Address and credentials  the software needs to connect to.

This information, if stored in plain text like many default installations do, provide the keys an attacker needs to access sensitive data.