Knowledgebase
SUPHP_ConfigPath
| Posted by l978, 04-05-2009, 08:42 AM | | Hi,
we need to prevent users from overriding global security and performance settings in main php.ini file
and have possibility to change some of the options like register_globals, individually for each user.
When appropriate line under [phprc_paths] in suphp.conf is uncommented then directive SUPHP_ConfigPath is totally ignored.
So what can we do in this situation. How to block possibility of creating php.ini files by users (which can override main php.ini)
and still we'd like to have possibility of modifying some setting for chosen account (having suPHP support on).
Regards,
|
| Posted by WebNaz, 04-05-2009, 12:30 PM | | http://forums.cpanel.net/showthread.php?t=112893
|
| Posted by l978, 04-05-2009, 01:02 PM | | I know where I wrote the post. Your answer doesn't solve the problem so If you don't know how to help please do not write just for writing.
Regards
|
| Posted by WebNaz, 04-06-2009, 02:19 AM | | I'm writing this just for writing
As you know regardless how PHP is run, particular values can be changed at runtime by ini_set()
If you are using cPanel, you can recompile your apache (easyapache3) with "Safe PHP CGI enaled", this will prevent using php.ini is users directories.
You can also install suhosin, comment-out "disable_functions" in php ini and then use the configuration "suhosin.executor.func.blacklist" in php.ini to disable PHP functions and then re-enabling it per virtual host by changing the "suhosin.executor.func.blacklist" in the virtual host directive.
|
|
 Add to Favourites
 Print this Article
|
Also Read
Loooking... (Views: 591)
