Differences
This shows you the differences between two versions of the page.
|
php_suhosin [2012/06/28 16:46] |
php_suhosin [2012/06/28 16:46] (current) |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| + | ====== PHP Suhosin ====== | ||
| + | Suhosin is a set of patches to improve security for PHP. Please research it thoroughly and do not apply it blindly. | ||
| + | |||
| + | * [[PHP]] | ||
| + | * [[http://www.hardened-php.net/suhosin/configuration.html|Configuration]] | ||
| + | * [[http://www.hardened-php.net/hphp/a_feature_list.html|Features]] | ||
| + | |||
| + | ==== Notes ==== | ||
| + | |||
| + | Disable suhosin (mostly?) | ||
| + | |||
| + | <code> | ||
| + | suhosin.simulation = On | ||
| + | </code> | ||
| + | |||
| + | Allow session data to be shared on a wildcard subdomain | ||
| + | |||
| + | <code> | ||
| + | session.cookie_domain = ".domain.com" | ||
| + | suhosin.session.cryptdocroot = Off | ||
| + | </code> | ||
