Differences
This shows you the differences between two versions of the page.
php_suhosin [2012/06/28 16:46] |
php_suhosin [2012/06/28 16:46] (current) |
||
---|---|---|---|
Line 1: | Line 1: | ||
+ | ====== PHP Suhosin ====== | ||
+ | Suhosin is a set of patches to improve security for PHP. Please research it thoroughly and do not apply it blindly. | ||
+ | |||
+ | * [[PHP]] | ||
+ | * [[http://www.hardened-php.net/suhosin/configuration.html|Configuration]] | ||
+ | * [[http://www.hardened-php.net/hphp/a_feature_list.html|Features]] | ||
+ | |||
+ | ==== Notes ==== | ||
+ | |||
+ | Disable suhosin (mostly?) | ||
+ | |||
+ | <code> | ||
+ | suhosin.simulation = On | ||
+ | </code> | ||
+ | |||
+ | Allow session data to be shared on a wildcard subdomain | ||
+ | |||
+ | <code> | ||
+ | session.cookie_domain = ".domain.com" | ||
+ | suhosin.session.cryptdocroot = Off | ||
+ | </code> |