In phpinfo() output, PHP tells you where it is looking for its php.ini
file.
If you aren't changing a php.ini file in that location, then PHP isn't
going to see it...
On Thu, January 10, 2008 4:59 pm, Ryan H. Madison wrote:
Hello,
I am trying to increase upload_max_filesize beyond
I do not see an entry stating Loaded Configuration File in the output
this only available since php 5.2 (iirc)
--
View this message in context:
http://www.nabble.com/-etc-php.init-changes-not-honored-tp14746039p14759509.html
Sent from the PHP - General mailing list archive at Nabble.com.
--
Hello,
I am trying to increase upload_max_filesize beyond the 2M
limit. I've set this in my /etc/php.ini file, but every time I look at
the output of phpinfo(); the changes I make in /etc/php.init don't seem
to be honored. This isn't limited to upload_max_filesize, I've changed
reload apache
Ryan H. Madison [EMAIL PROTECTED] wrote:
Hello,
I am trying to increase upload_max_filesize beyond the 2M
limit. I've set this in my /etc/php.ini file, but every time I look at
the output of phpinfo(); the changes I make in /etc/php.init don't seem
to
restart the server process that is reading it, otherwise the server is using
the original settings.
You can do some override by using the .htaccess file and setting specific
things in specific folders, but if you are setting global changes, you have to
restart the server process for the
, January 10, 2008 3:04 PM
To: Ryan H. Madison
Cc: php-general@lists.php.net
Subject: Re: [PHP] /etc/php.init changes not honored
reload apache
Ryan H. Madison [EMAIL PROTECTED] wrote:
Hello,
I am trying to increase upload_max_filesize beyond the 2M
limit. I've set
On Jan 10, 2008 5:59 PM, Ryan H. Madison [EMAIL PROTECTED] wrote:
Hello,
I am trying to increase upload_max_filesize beyond the 2M
limit. I've set this in my /etc/php.ini file, but every time I look at
the output of phpinfo(); the changes I make in /etc/php.init don't seem
to be
On Jan 10, 2008 6:09 PM, Ryan H. Madison [EMAIL PROTECTED] wrote:
Done several times in several different ways. - Same result in the
phpinfo.php output.
$ sudo apachectl graceful
$ sudo apachectl stop
$ sudo apachectl start
$ sudo service httpd restart
Stopping httpd:
-Original Message-
From: Eric Butera [mailto:[EMAIL PROTECTED]
Sent: Thursday, January 10, 2008 3:16 PM
To: Ryan H. Madison
Cc: php-general@lists.php.net
Subject: Re: [PHP] /etc/php.init changes not honored
On Jan 10, 2008 5:59 PM, Ryan H. Madison [EMAIL PROTECTED] wrote:
Hello
-Original Message-
From: Fejes Jozsef [mailto:[EMAIL PROTECTED]
Sent: 10 July 2003 12:33
My method is:
1. check if id starts with /
if(ereg(^\/, $id))
goaway;
That's a rather expensive (and slightly obscure) way of performing that check. Try:
if ($id{0}=='/')
goaway;
Hello php-general,
my server is running freebsd 5.0
and yet i havent fixed bug that i knew long time ago, so can anyone
point me with some links or resources about it, i could not find any
good on google, maybe i don't know how to search.
The problem is
if the make script ? if($id)
Mantas Kriauciunas wrote:
The problem is
if the make script ? if($id) include($id); ?
and then just write
test.php?id=/etc/passwd , they see all the file.
Check if $id is valid. Exact way depends on the structure of the files.
Example 1: All included files are in web root and are named
Hello Marek,
Thanks for the answer, but i think you misunderstood me because of my
bad english. What i mean is the people with that code can access and
view files on any place on my server and see the passwords stored in
some files, decode them, and do stuff like that. I wanted to know how
to
Exactly like I said, just check this:
$id='/etc/passwd';
if($id eregi('^[a-z0-9_]+\.html',$id)) include($id);
else die('Go away!');
The regular expression prevents anyone from accessing any file that is
not in your web root (http://your.server.net/) or its name does contain
any other character
On Thursday 10 July 2003 17:26, Mantas Kriauciunas wrote:
my server is running freebsd 5.0
and yet i havent fixed bug that i knew long time ago, so can anyone
point me with some links or resources about it, i could not find any
good on google, maybe i don't know how to search.
First of
My method is:
1. check if id starts with /
if(ereg(^\/, $id))
goaway;
2. check if there is .. in it
if(ereg(\.\., $id))
goaway;
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Add a check for php files, or any other files you don't want anybody to
include:
if(ereg('php[0-9]$', $id))
goaway;
Fejes Jozsef wrote:
My method is:
1. check if id starts with /
if(ereg(^\/, $id))
goaway;
2. check if there is .. in it
if(ereg(\.\., $id))
goaway;
--
PHP General
At 13:45 10-7-03, Marek wrote:
Add a check for php files, or any other files you don't want anybody to
include:
if(ereg('php[0-9]$', $id))
goaway;
but what about '?' and '#' additions?
$id=however_they_would_find_out/your_path/file.php?extra=x#loc;
?
so maybe
if(ereg('\.php', $id)) ?
--
So how to make sure that no one can access other people files and
server files? and is there any way that nobody would be able to
download php files or how to make them look like code when they are
downloaded. Thanks!
I think he means How do I keep people who have access to upload their
Hi,
if the make script ? if($id) include($id); ?
and then just write
test.php?id=/etc/passwd , they see all the file.
Well, FreeBSD provides a way to jail webservers: Jails 8-)
http://www.freebsd.org/doc/en_US.ISO8859-1/books/developers-handbook/jail.html
with best regards
--
Hello Wendell,
Thursday, July 10, 2003, 6:59:25 AM, you wrote:
So how to make sure that no one can access other people files and
server files? and is there any way that nobody would be able to
download php files or how to make them look like code when they are
downloaded. Thanks!
WB I
- Original Message -
From: Mark Gallagher [EMAIL PROTECTED]
To: Ben Ramsey [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Wednesday, July 10, 2002 10:14 AM
Subject: Re: [PHP]
??ØØ
The list really can be a
Is there a function that encrypts a string the same way the shadow file
does???
What I wanna make is a page that changes my unix account password
Thanx
___
Diogo Saad
[EMAIL PROTECTED]
Inter Business Tecnologia e Servios.
--
PHP General Mailing List
Yeah, crypt()
Don't forget the salt.
I did the same thing.
Moved all my users into a database table with unix encrypted passwords, and
run a function that dumps them all out to my /etc/passwd file.
It appends the database data onto a passwd.base file that I made, that
includes all the protected
24 matches
Mail list logo
