View Poll Results: Do you configure PHP in safe mode?

Voters
11. You may not vote on this poll
  • Always

    6 54.55%
  • Never

    4 36.36%
  • Only if the client requests it

    0 0%
  • What the heck is safe mode?

    1 9.09%
Results 1 to 4 of 4
  1. #1

    Do you configure PHP in Safe mode?

    How many of you configure PHP in Safe mode?

    What about setting open_basedir?

    -t

  2. #2
    Join Date
    Oct 2000
    Posts
    337
    Nope... we run PHP as a CGI, under suexec, which doesn't expose you to any more security vulnerabilities than any other script a user could upload.

    That said, I'm looking forward to a release version of Apache 2.0 so we can offer PHP as a server module and still have scripts run with the user's permissions.

  3. #3
    Yes, Apache 2.0 will be very interesting. BTW, has Covalent already released their commercial Apache 2.0?

  4. #4
    Join Date
    Oct 2000
    Posts
    337
    I believe they have, which is odd, given that Apache 2.0 hasn't hit release yet. I guess they figure it's good enough.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •