Menu
Community /Pin to ProfileBookmark
@NogDogMay 06.2011 — #The [url=http://www.php.net/manual/en/ini.core.php#ini.open-basedir]open_basedir[/url] setting can be used to control directory access by PHP scripts. (Of course, this does nothing for Perl or shell scripts.) I would also suggest making sure [url=http://www.php.net/manual/en/filesystem.configuration.php#ini.allow-url-include]allow_url_include[/url] is off, and if you don't need it then also turn off [url=http://www.php.net/manual/en/filesystem.configuration.php#ini.allow-url-fopen]allow_url_fopen[/url] . If you don't need to use cURL at all, you could disable the curl_init() function, too. Basically this is all to keep scripts from accessing anything via URL, and with the open_basedir restriction you end up only allowing PHP scripts to access local files within the specified directory tree. Of course, some PHP scripts need to access remote content, in which case I recommend using the cURL functions and leaving the allow_url_* settings off if possible, and if not still leave the allow_url_include setting off.
Restrict PHP files to one folder.
Hi if I had php files in one folder, and I only wanted them to have access to [B]only
Also what are some harmful PHP functions I may need to disable, in case of possible exploits?
Sign in
to post a comment2 Comments(s) ↴
0
@NogDogMay 06.2011 — #The