Development

Wiki Start
Wishlist
Timeline
Roadmap
Browse Source
New Ticket
View Tickets

Changeset 318

Show
Ignore:
Timestamp:
02/09/07 18:09:45 (2 years ago)
Author:
nuxwin
Message:

- CONFIGS:

Edit "php.ini" files for master user:

  • open_basedir: added "bind/df" and "/bind/mount" path for GUI System Info
  • open_basedir: added "/var/log/rkhunter.log" path for Gui Rootkit
  • disable_functions: remove "popen" function for GUI system Info
Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • trunk/CHANGELOG

    r317 r318  
    1313|               * gui: disable stats-alias in client menu         | 
    1414\_________________________________________________________________/ 
     15 
     162007-02-09 Laurent DECLERCQ 
     17        - CONFIGS: 
     18                Edit "php.ini" files for master user: 
     19                        - open_basedir: added "bind/df" and "/bind/mount" path for GUI System Info 
     20                        - open_basedir: added "/var/log/rkhunter.log" path for Gui Rootkit 
     21                        - disable_functions: remove "popen" function for GUI system Info 
    1522 
    16232007-02-08 Benedikt Heintel 

  • trunk/configs/fcgi/parts/master/php4/php.ini

    r308 r318  
    202202;       support by the security team.  for more information please 
    203203;       see /usr/share/doc/php4-common/README.Debian.security 
    204 
    205 open_basedir = "{WWW_DIR}/{DMN_NAME}/:{CONF_DIR}/:/proc/:{PEAR_DIR}/" 
     204open_basedir = "{WWW_DIR}/{DMN_NAME}/:{CONF_DIR}/:/proc/:/bin/df/:/bin/mount/:/var/log/rkhunter.log/:{PEAR_DIR}/" 
    206205 
    207206; This directive allows you to disable certain functions for security reasons. 
    208207; It receives a comma-delimited list of function names. This directive is 
    209208; *NOT* affected by whether Safe Mode is turned On or Off. 
    210 disable_functions = show_source, system, shell_exec, passthru, exec, phpinfo, popen, proc_open, shell, symlink 
     209disable_functions = show_source, system, shell_exec, passthru, exec, phpinfo, proc_open, shell, symlink 
    211210 
    212211; This directive allows you to disable certain classes for security reasons. 

  • trunk/configs/fcgi/parts/master/php5/php.ini

    r308 r318  
    151151; or per-virtualhost web server configuration file. This directive is 
    152152; *NOT* affected by whether Safe Mode is turned On or Off. 
    153 open_basedir = "{WWW_DIR}/{DMN_NAME}/:{CONF_DIR}/:/proc/:{PEAR_DIR}/" 
     153open_basedir = "{WWW_DIR}/{DMN_NAME}/:{CONF_DIR}/:/proc/:/bin/df/:/bin/mount/:/var/log/rkhunter.log/:{PEAR_DIR}/" 
    154154 
    155155; This directive allows you to disable certain functions for security reasons. 
    156156; It receives a comma-delimited list of function names. This directive is 
    157157; *NOT* affected by whether Safe Mode is turned On or Off. 
    158 disable_functions = show_source, system, shell_exec, passthru, exec, phpinfo, popen, proc_open, shell, symlink 
     158disable_functions = show_source, system, shell_exec, passthru, exec, phpinfo, proc_open, shell, symlink 
    159159 
    160160; This directive allows you to disable certain classes for security reasons.