Thursday, February 13, 2003, , wrote: In my opinion php.ini is the least problem. Appache configuration is also important. You must secure your server, switch off unused ports. There is no default security configuration because it depends on the whole system.
> I'm completely new to php but am interested in getting things runnng on a > "live" apache server. The default php.ini file has a huge security > disclaimer at the top stating that the default configuration is not > sufficiently secure for "production". It references the php manual chapter > on security for more information. > I've read the manual, but in my green state it's still not clear to me what > I should change to keep my server from being hacked. > Would anyone be able to provide a "standard" ini file or list of changes to > the default that would keep me out of trouble with regards to security and > let me learn to use php as time permits? > Thanks, > Val -- Krzysztof Dziekiewicz -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
