Q: Is there a way to encrypt passwords in config.xml?
A: No this is not possible because of technical reasons. Some services need them in plain text in their config files, so how do you want to decrypt a encrypted password? Also some services need them in MD5, what shall we do when another one wants it in CRYPT or something else? However you can store the config encrypted local when you do backup.