securing PHP (was: Kernel Crash Bug????)
On Tue, Jun 15, 2004 at 09:23:33AM +0100, David Ramsden wrote:
> On Tue, Jun 15, 2004 at 05:52:18PM +1000, Russell Coker wrote:
> > Does PHP allow executing arbitary binaries?
> >
> [snip]
>
> Yes, unless in your php.ini you have something along the lines of:
> disable_functions = system,passthru,shell_exec,popen,proc_open
Can somebody point me to some documentation about securing PHP?
--
Rudy Gevaert rudy@zeus.UGent.be
Web page http://www.webworm.org
Schamper sysadmin http://www.schamper.ugent.be
GNU/Linux user and Savannah hacker http://savannah.gnu.org
On-line, adj.:
The idea that a human being should always be accessible to a computer.
Reply to: