Useful Snippets

Welcome!


This blog is used to collect useful snippets related to Linux, PHP, MySQL and more. Feel free to post comments with improvements or questions!

RSS Latest posts from my personal blog


Most viewed posts


Subscribe to RSS feed


disable_functions in PHP for added security

Stanislav KhromovStanislav Khromov

Setting up open_basedir is good security practice, but a user can still read files from other directories by invoking exec or other commands that run on the operating system level. We can fix this by disabling a select few commands in your php.ini file.

Open /etc/php.ini (or similar), look for disable_functions and add:

disable_functions=popen,exec,system,passthru,proc_open,shell_exec

Source

PHP

Web Developer at Aftonbladet (Schibsted Media Group)
Any opinions on this blog are my own and do not reflect the views of my employer.
LinkedIn
Twitter
WordPress.org Profile
Visit my other blog

Comments 1
  • Richard Benn
    Posted on

    Richard Benn Richard Benn

    Reply Author

    Thanks for the snippet! We are trying our best to secure our server as much as we can and will make use of this ASAP.