1
0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-24 04:33:24 +00:00
freebsd-ports/lang/php52/files/patch-php.ini-recommended
Dirk Meyer 3acf4c24e2 PHP, which stands for "PHP: Hypertext Preprocessor" is a widely-used Open
Source general-purpose scripting language that is especially suited for
Web development and can be embedded into HTML.  Its syntax draws upon C,
Java, and Perl, and is easy to learn.  The main goal of the language is to
allow web developers to write dynamically generated webpages quickly, but
you can do much more with PHP.

WWW: http://www.php.net/
PR:		145772
Submitted by:	Alex Keda
2010-04-23 15:03:13 +00:00

19 lines
716 B
Plaintext

--- php.ini-recommended.orig Fri Dec 30 18:19:43 2005
+++ php.ini-recommended Mon Oct 16 08:13:05 2006
@@ -223,6 +223,15 @@
;
; Safe Mode
;
+; SECURITY NOTE: The FreeBSD Security Officer strongly recommend that
+; the PHP Safe Mode feature not be relied upon for security, since the
+; issues Safe Mode tries to handle cannot properly be handled in PHP
+; (primarily due to PHP's use of external libraries). While many bugs
+; in Safe Mode has been fixed it's very likely that more issues exist
+; which allows a user to bypass Safe Mode restrictions.
+; For increased security we recommend to always install the Suhosin
+; extension.
+;
safe_mode = Off
; By default, Safe Mode does a UID compare check when