Adrian, et al --
...and then Adrian Teasdale said...
%
% Hi there
Hi!
%
% I have been reading about certain php scripts that, if used incorrectly,
% can compromise servers. There are certain open source scripts that I
Interesting.
% know if (no names mentioned) that have exploits that allow this and I
% want to know if there is a How to or best practice anywhere for
% securing PHP against this. I was told to add some stuff to the php.ini
% file to prevent certain actions (phpinfo ,system, include, chown, chmod,
% exec, passthru, mail, readfile , dir , read, readdir) but was wondering
% if someone could give some advice
1) I'm no expert, though I'd like to be somewhat closer
2) If you're not speaking of safe mode, then look at safe mode
3) Please share what you find to help others, including me.
%
%
% Thanks
%
% Ade
TIA HTH HAND
:-D
--
David T-G * There is too much animal courage in
(play) [EMAIL PROTECTED] * society and not sufficient moral courage.
(work) [EMAIL PROTECTED] -- Mary Baker Eddy, Science and Health
http://justpickone.org/davidtg/ Shpx gur Pbzzhavpngvbaf Qrprapl Npg!
pgp0.pgp
Description: PGP signature
