Results 1 to 4 of 4
  1. #1

    Arrow ini_set disabling create risk for server

    I like to know according to some experts and firewalls like CSF, ini_set need to be disabled

    if enabled then really create risk for the server... because still many new scripts using that and can be break like popular openx?

  2. #2
    Yea, with ini_set disabled you can avoid users overwriting the main php.ini file and like bypassing the other things like limits (if I'm not wrong). A good practice will be to disable ini_set on default and enable it for specific users that require it.
    Ian Lai - www.fyianlai.com
    Web Design & Development
    System Operator & Administrator

  3. #3
    but if some scripts are using then how what can be done?

  4. #4
    Join Date
    Oct 2006
    Location
    /usr/src/linux/
    Posts
    700
    You can remove ini_set from the scripts and set the appropriate parameters in php.ini yourself rather than letting the scripts to override them with ini_set.
    VPSnoc.com offers high quality Xen® OpenVZ & Windows® Virtual Private Servers at affordable prices.
    99.95% Uptime | 24/7/365 Support | Unmetered bandwidth.
    Follow us: twitter.com/VPSnoc

Similar Threads

  1. Joomla - ini_set enabled is security risk
    By anastasia0181 in forum Hosting Security and Technology
    Replies: 2
    Last Post: 11-20-2009, 11:22 AM
  2. Linux help - create batch script for disabling user account
    By horizon in forum Programming Discussion
    Replies: 1
    Last Post: 03-02-2009, 07:30 AM
  3. should i enable ini_set() ?
    By joelin in forum Hosting Security and Technology
    Replies: 4
    Last Post: 09-30-2008, 03:58 AM
  4. high risk & low risk merchant account specialist needed
    By gcorpz in forum Employment / Job Offers
    Replies: 1
    Last Post: 05-18-2006, 10:15 AM
  5. ini_set(); to override session.gc_maxlifetime in php.ini
    By compjab in forum Programming Discussion
    Replies: 12
    Last Post: 02-24-2006, 12:23 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •