You might need to have the second line in PHP.INI too: cgi.force_redirect=0 cgi.redirect_status_env ENV_VAR_NAME
Cor van de Veen "Matthew Gotth-Olsen" <[EMAIL PROTECTED]> schreef in bericht [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm running IIS on a WinXP box, I've got everything installed, however > whenever I try to access a php script I get this error which I'm sure you > all are familiar with: > > ---------------------------------------------------------------------- > Security Alert! PHP CGI cannot be accessed directly. > This PHP CGI binary was compiled with force-cgi-redirect enabled. This means > that a page will only be served up if the REDIRECT_STATUS CGI variable is > set. This variable is set, for example, by Apache's Action directive > redirect. > > You may disable this restriction by recompiling the PHP binary with > the --disable-force-cgi-redirect switch. If you do this and you have your > PHP CGI binary accessible somewhere in your web tree, people will be able to > circumvent .htaccess security by loading files through the PHP parser. A > good way around this is to define doc_root in your php.ini file to something > other than your top-level DOCUMENT_ROOT. This way you can separate the part > of your web space which uses PHP from the normal part using .htaccess > security. If you do not have any .htaccess restrictions anywhere on your > site you can leave doc_root undefined. If you are running IIS, you may > safely set cgi.force_redirect=0 in > php.ini. ------------------------------------------------------------------- > ------- > > So I reread through the documentation, and I made sure that > "cgi.force_redirect=0" under my php.ini under c:\windows\ is there something > I'm missing? I've tried the insteller and the manual install, and bothe give > me the same message... I've even tried removing php completely and > re-installing it both ways... no dice... an help would be appreciated... > > > > > > > -- PHP Windows Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
