Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- PHP Safe Mode?
- Matthias Kaeppler
September 10, 2005, 10:12 pm
rate this thread
I was wondering how insecure a server gets when disabling PHP safe mode?
I saw that some wikis and CMS need PHP safe mode to be disabled.
Disabling something called "safe mode" lets my alarm bells go wild, so
should I skip these kinds of CMS/Wikis or is it okay to tell my ISP to
diable safe mode without taking too much risk?
I'm not sure.
Re: PHP Safe Mode?
Pretty insecure so you have to secure it by other means
e.g. mod_security in Apache plus greater firewalling of certain ports
because what people will do is try and upload DOS attack scripts via image
gallery scripts (or avatar uploads in bulletin boards) using character
Gordon Hudson || Hostroute.com Ltd
e-mail:ghudson [at] hostroute.net
http://www.hostroute.com/resellers Host 5 web sites for $9 per month
http://www.nameroute.com/ Domain Names with free hosting and email $15
- » looking for host where we can run a custom spam filter
- — Next thread in » Webmaster Forum