Alessandro De Zorzi wrote:
> for example, suppose a user change memory_limit setting
>
> <?php
> ini_set('memory_limit', '1024M');
> phpinfo();
> ?>
>
> this is not possible with safe_mode=On
> Another one is setting custom path to execute binary command with
> system() function
Hi,
Better way of disabling those is to disable system() and ini_set()
/etc/php.ini:
; This directive allows you to disable certain functions for security
reasons.
; It receives a comma-delimited list of function names. This directive is
; *NOT* affected by whether Safe Mode is turned On or Off.
disable_functions =
_______________________________________________
suPHP mailing list
suPHP@lists.marsching.biz
http://lists.marsching.biz/mailman/listinfo/suphp
