head 1.3; access; symbols OPENPKG_E1_MP_HEAD:1.3 OPENPKG_E1_MP:1.3 OPENPKG_E1_MP_2_STABLE:1.3 OPENPKG_E1_FP:1.3 OPENPKG_2_STABLE_MP:1.3 OPENPKG_2_STABLE_20061018:1.3 OPENPKG_2_STABLE_20060622:1.3 OPENPKG_2_STABLE:1.3.0.8 OPENPKG_2_STABLE_BP:1.3 OPENPKG_2_5_RELEASE:1.3 OPENPKG_2_5_SOLID:1.3.0.6 OPENPKG_2_5_SOLID_BP:1.3 OPENPKG_2_4_RELEASE:1.3 OPENPKG_2_4_SOLID:1.3.0.4 OPENPKG_2_4_SOLID_BP:1.3 OPENPKG_CW_FP:1.3 OPENPKG_2_3_RELEASE:1.3 OPENPKG_2_3_SOLID:1.3.0.2 OPENPKG_2_3_SOLID_BP:1.3 OPENPKG_2_2_RELEASE:1.1 OPENPKG_2_2_SOLID:1.1.0.2 OPENPKG_2_2_SOLID_BP:1.1; locks; strict; comment @# @; 1.3 date 2005.01.02.11.27.02; author rse; state Exp; branches; next 1.2; 1.2 date 2004.11.30.21.07.09; author rse; state Exp; branches; next 1.1; 1.1 date 2004.08.25.15.57.28; author rse; state Exp; branches; next ; desc @@ 1.3 log @increase security even more @ text @;; ;; php.ini -- PHP Configuration ;; [PHP] ; Resource Limits register_globals = off ; Global variables are no longer registered for input data safe_mode = on ; Enable Safe Mode (file UID comparisons) safe_mode_gid = off ; Whether to relax Safe Mode to file GID comparisons allow_url_fopen = off ; Disable the opening of remote URLs display_errors = off ; Errors will NOT be displayed log_errors = on ; Errors will be logged max_execution_time = 60 ; Maximum execution time of each script, in seconds max_input_time = 60 ; Maximum amount of time each script may spend parsing request data memory_limit = 8M ; Maximum amount of memory a script may consume post_max_size = 8M ; Maximum amount of POST data accepted ; Include Paths include_path = ".:@@l_prefix@@/lib/php" safe_mode_include_dir = "@@l_prefix@@/lib/php" @ 1.2 log @add include paths to make sure PEAR and other extensions are found by default @ text @d11 1 @ 1.1 log @Ok, until now nobody gave my a short, clean and reasonable secure default PHP configuration, here is my home-brewn version. Keep in mind that I'm not a PHP freak, so perhaps I totally misunderstood some directives. Feel free to fix. @ text @d6 2 d18 4 @