--------------------------------------------------
This article is provided free by
Stealth IT Solutions Limited
It is free for non-distribution only.
Due to the nature of this data it may
not be edited, no data may be removed
including this text.
With thanks to admin0
myshashi2010@yahoo.com
------http://www.stealthhosts.com-------
Hardening PHP for dangerous functions:
First of all, locate your php.ini
If you don't know where you php.ini is, it's easy.
simply upload this file in your www folder
name the file something say info.php
and call the file as http://domain.com/info.php
a page will load, and at the top part, something like this line will be shown i.e on the 6th row
The following is from my CPanel server:
The following is from my Plesk server:
In SSH:
edit the file (the php.ini file) :
which will disable the mentioned commands and any other command that you want to disable as mentioned in that line.
You can disable any command such way.
Using CPanel ?
login to your WHM
Click Tweak Security [server setup group]
Click php open_basedir tweak
and select Enable php open_basedir Protection
again,
Click Update Apache [software group]
select PHP suEXEC Support
and build your apache. You will be pretty safe with phpsuexec and open_base_dir restriction for php.
This article is provided free by
Stealth IT Solutions Limited
It is free for non-distribution only.
Due to the nature of this data it may
not be edited, no data may be removed
including this text.
With thanks to admin0
myshashi2010@yahoo.com
------http://www.stealthhosts.com-------
Hardening PHP for dangerous functions:
First of all, locate your php.ini
If you don't know where you php.ini is, it's easy.
simply upload this file in your www folder
PHP:
<?
phpinfo();
?>name the file something say info.php
and call the file as http://domain.com/info.php
a page will load, and at the top part, something like this line will be shown i.e on the 6th row
The following is from my CPanel server:
Code:
------------------------------------------------------------------
| Configuration File (php.ini) Path: /usr/local/lib/php.ini |
------------------------------------------------------------------
Code:
--------------------------------------------------------
| Configuration File (php.ini) Path: /etc/php.ini |
--------------------------------------------------------In SSH:
Code:
cp /usr/local/lib/php.ini /usr/local/lib/php.ini.origedit the file (the php.ini file) :
Code:
disable_functions = phpinfo ,system, include, chown, chmod, exec, passthru, mail, readfile , dir , read, readdirwhich will disable the mentioned commands and any other command that you want to disable as mentioned in that line.
You can disable any command such way.
Using CPanel ?
login to your WHM
Click Tweak Security [server setup group]
Click php open_basedir tweak
and select Enable php open_basedir Protection
again,
Click Update Apache [software group]
select PHP suEXEC Support
and build your apache. You will be pretty safe with phpsuexec and open_base_dir restriction for php.
