Changing passwords post security breach



Hi everyone,

A bit of a noob question for you all;

Obviously I should change all passwords after the breach, but I’m just concerned about changing my mysql server(s) user passwords. If I change a user password in the control panel, do I need to subsequently edit all the config files associated with my WordPress/SimpleMachines/MediaWiki installations, and change the database password there too (i.e. are the user database passwords in the control panel the same as the database passwords in the CMS config files)? I presume so, but for some reason I’m having a little bit of a mental block today, and thought it best to ask before doing anything silly.

Any advice is much appreciated!