Allow_url_fopen Workaround

Jul 6, 2007

I wouldn't like to disable allow_url_fopen on my servers, because some scripts depends on that but it's getting very common to see scripts being abused because of this feature

any ideas on how to at least log its usage, so it's easier to detect who caused the exploitation (usually for SPAM or shell)? I though about a "=http://" mod_security filter
but maybe (I hope) there a better way

View 2 Replies


ADVERTISEMENT

How Turn Off Allow_url_fopen And Short_open_tag In PHP4/5 - Module CGI

Jul 15, 2007

How turn off allow_url_fopen and short_open_tag in PHP4/5 - module CGI?

I create php.ini in /home/myusername/public_html/php.ini and add command:

allow_url_fopen=0 (not working)
short_open_tag=0 (not working

allow_url_fopen=Off (not working)
short_open_tag=Off (not working)

View 2 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved