Results 1 to 3 of 3
  1. #1

    Question Safe_Mode and register_globals, on or off for best security?

    Hello all, I have been having some load trouble with my VPS so I was going through the settings on the server to try and see if I could stop some it by changing some settings. WHile looking through the PHP COnfiguration Editor I noticed that safe_mode and register_globals are both turned off.

    For security reasons, which is the best setting for those. Should I trun them on, or leave them off?

    Thanks in advance!

  2. #2
    Join Date
    Aug 2004
    safe_mode should be on, register_global should be off.

    GPLHost:>_ open source hosting worldwide (I'm founder, CEO & official Debian Developer)
    Servers & our leading control panel and our Xen VPS hosting, which are already included in Debian and Ubuntu
    Available in: Kuala Lumpur, Singapore, Sydney, Seattle, Atlanta, Paris, London, Barcelona, Zurich, Israel

  3. #3
    Both are being removed in PHP 6:

    Register globals should probably be set to "off" regardless. As far as safe mode goes, I've read a bit of debate, but here's what a Joomla doc/article has to say:

    Enabling safe_mode is not needed if other reasonable security precautions are followed. Using safe_mode for web site security is a poor compromise in a bad situation. It may make sense in some situations, but there is almost always a better way. Because safe_mode in some sense only gives the illusion of safety, it will be removed from PHP starting with version 6.0.

    In any case, since both will be gone eventually anyway, may as well keep them both off. - Save money by buying glasses online!

Similar Threads

  1. Security concerns on disabling safe_mode in shared server
    By robotwink in forum Hosting Security and Technology
    Replies: 1
    Last Post: 09-27-2009, 03:26 AM
  2. How can custom safe_mode / register_globals for an account ?
    By VIETHOSTING in forum Hosting Security and Technology
    Replies: 3
    Last Post: 12-11-2008, 05:41 AM
  3. Register_globals, what is this?
    By Postmaster in forum Web Hosting
    Replies: 7
    Last Post: 04-30-2004, 07:14 PM
  4. PHP : register_globals to off
    By tw12 in forum Programming Discussion
    Replies: 2
    Last Post: 03-04-2003, 12:22 AM
  5. register_globals and PHP ini :)
    By UH-Matt in forum Hosting Security and Technology
    Replies: 4
    Last Post: 08-16-2002, 10:29 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts