Useful Snippets

Welcome!

This blog is used to collect useful snippets related to Linux, PHP, MySQL and more. Feel free to post comments with improvements or questions!

Are your smart devices spying on you? Make better purchasing choices and find products that respect your privacy at Unwanted.cloud

RSS Latest posts from my personal blog

Most viewed posts

Subscribe to RSS feed

RSS RSS feed

Copyright © Useful Snippets. 2024 • All rights reserved.

Cedar WordPress Theme by EckoThemes. Published with WordPress.

disable_functions in PHP for added security

Stanislav KhromovStanislav Khromov

Setting up open_basedir is good security practice, but a user can still read files from other directories by invoking exec or other commands that run on the operating system level. We can fix this by disabling a select few commands in your php.ini file.

Open /etc/php.ini (or similar), look for disable_functions and add:

disable_functions=popen,exec,system,passthru,proc_open,shell_exec

Source

Related posts

  1. Redeploy all Convox apps in a rack using CLI and set RedirectHttps=No for selected apps
  2. Force Piwik to recreate all archived stats
  3. Force WordPress security upgrade to latest minor version
  4. Get all attachments whose post parent is published in WordPress
PHP
Stanislav Khromov
Author

Web Developer at Aftonbladet (Schibsted Media Group)
Any opinions on this blog are my own and do not reflect the views of my employer.
LinkedIn
Twitter
WordPress.org Profile
Visit my other blog

Comments 1
  • Richard Benn
    Posted on

    Richard Benn Richard Benn

    Reply Author

    Thanks for the snippet! We are trying our best to secure our server as much as we can and will make use of this ASAP.