====== PHP Suhosin ======

Suhosin is a set of patches to improve security for PHP.  Please research it thoroughly and do not apply it blindly.

  * [[PHP]]
  * [[http://www.hardened-php.net/suhosin/configuration.html|Configuration]]
  * [[http://www.hardened-php.net/hphp/a_feature_list.html|Features]]

==== Notes ====

Disable suhosin (mostly?)

<code>
suhosin.simulation = On
</code>

Allow session data to be shared on a wildcard subdomain

<code>
session.cookie_domain = ".domain.com"
suhosin.session.cryptdocroot = Off
</code>