Override php.ini in phpsuexec
Using phpSuexec, every user could use his own php.ini and overwrite the "master" php.ini, so he could put registerglobals on or alter openbasedir and others.
Is there any way to avoid that a user overwrite php.ini with his own php.ini? (Using phpsuExec, of course)
Thanks
The only way to override this behavior is to patch PHP so it won't look outside the global php.ini.
In main/php_ini.c look for
/* Check CWD for php.ini */
#define INI_CHECK_CWD
change that to
/* Check CWD for php.ini */
/* #define INI_CHECK_CWD */
and you will find that PHP will only obey the global php.ini. This cannot be turned on with a per website basis.
http://www.lifelesspeople.com/ The revolution has begun! Pay by Post™ Webhosting is here!
LinkBack URL
About LinkBacks
Reply With Quote