hi all,
if a new client ask you if he can see what vers. of php and modules are installed and ask a link to this file (with: <? phpinfo(); ?>) would you do this?

I think there are so much infos on that output... and dont' think this willb e very clever to give all this infos to everyone...

What do you think?


thanks

You new client can easily put up that code and look himself in a matter of minutes.

Not such a big deal I believe.


Lats...

yes afhter he signup.. (so i have infos who is he etc.)
But i mean befor that....

Ahhh, before he signs up.

You may want to ask specifically what he wants to know - it may be just what graphic version you're running.


Lats...

I think it's right of you to think twice about it. There are some path info as well as other stuff which gives them an insight on how your server is configured - all these information should be kept with you if possible.

Just tell the client which version you are using and which modules are installed - he just gotta trust that. It's like all other information about a certain plan, I mean what if someone confronted you and wanted PROOF that he really gets 50 MB or whatever is offered on a plan he is interested in.

Any of your customers can setup a phpinfo file and show it to anybody/everybody and you will not notice that.

So theres no way to hide that info...

Originally posted by dominet
So theres no way to hide that info...
Are you sure? :)

In php.ini:

; This directive allows you to disable certain functions for security reasons.
; It receives a comma-deliminated list of function names. This directive is
; *NOT* affected by whether Safe Mode is turned On or Off.

disable_functions = phpinfo,chown, chmod, exec, passthru.

I meant that if YOU (the owner) don't show phpinfo() any customer can show it.

Originally posted by dominet
I meant that if YOU (the owner) don't show phpinfo() any customer can show it. I meant that you can disable phpinfo() function in php.ini config file.

I tell you what is funny. Do a google search on "phpinfo" and see how many people have put up a publically accessable page publishing their phpinfo().