[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-users] RE: RE: >> PHP [ opendir() or explode () ]
- Subject: [cobalt-users] RE: RE: >> PHP [ opendir() or explode () ]
- From: "Nicolae Popescu Jr." <nicolaep@xxxxxxxxxxxxxxxxxx>
- Date: Tue Mar 26 11:52:05 2002
- Organization: EnigmaBiz.Com
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
Thanks for the input.
I just added the following to my php.ini
------------------
;for security reason from cobalt raq list
disable_functions = opendir, explode
------------------
I doubt someone will inquiry about the feature
if it's on or not.
> Message: 17
> From: "Kai" <go@xxxxxxxxxxxx>
> To: <cobalt-users@xxxxxxxxxxxxxxx>
> Subject: RE: [cobalt-users] PHP Directory Listing Security Issue...
> Date: Wed, 27 Mar 2002 10:49:27 +1000
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> This leaves PHP practically useless for file handling, and
> explode is an important function that i would rather not
> remove. It doesn't matter. I just thought linux might support
> something like this.
>
> Ciao
>
> -----Original Message-----
> From: cobalt-users-admin@xxxxxxxxxxxxxxx
> [mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of Steve Werby
> Sent: Wednesday, 27 March 2002 6:52 AM
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: Re: [cobalt-users] PHP Directory Listing Security Issue...
>
>
> "Nicolae Popescu Jr." <nicolaep@xxxxxxxxxxxxxxxxxx> wrote:
> > I have PHP Version 4.1.2
> >
> > I don't have anything in my php.ini with:
> > opendir() or explode().
>
> IIRC, if you want to disable functions the directive to use
> is disable_functions. You'd need to add something like the
> following to php.ini (anywhere in it):
>
> disable_functions = opendir, explode
>
> Please consult the PHP manual at php.net or other resources
> to verify. Or just give it a try. If it works it's right. <g>
>
> --
> Steve Werby
> President, Befriend Internet Services LLC http://www.befriend.com/