Removed open_basedir patch from EasyApache 4 systems

N

Nirjonadda

Well-Known Member
May 8, 2013
759
28
78
cPanel Access Level
Root Administrator
cPanel Removed open_basedir patch from EasyApache 4 systems from version 76, So now what is Requirements for this Security?

The open_basedir tweak limits the user's ability to browse the file system with PHP. It prevents PHP's access to the user's home directory, the /tmp directory, and some necessary PHP system directories. This helps to protect your system from unauthorized access through PHP.
Click to expand...
 
cPanelLauren

cPanelLauren

Product Owner II
Staff member
Nov 14, 2017
13,266
1,304
363
Houston
Hello,


Please see the release notes here:
76 Release Notes - Version 76 Documentation - cPanel Documentation

Removed open_basedir patch from EasyApache 4 systems
WHM's PHP open_basedir Tweak interface (WHM >> Home >> Security Center >> PHP open_basedir Tweak) now only appears on systems that run EasyApache 3. This interface did not update the settings on systems that run EasyApache 4.

This really doesn't change much for EasyApache 4 systems, it just removes a duplicated UI. You can still employ open_basedir restrictions my modifying the PHP.ini for each php version by going to WHM>>Software>>MultiPHP INI Editor.

Code: 
; open_basedir, if set, limits all file operations to the defined directory
; and below.  This directive makes most sense if used in a per-directory
; or per-virtualhost web server configuration file.
; http://php.net/open-basedir
;open_basedir =
Thanks!
 
N

Nirjonadda

Well-Known Member
May 8, 2013
759
28
78
cPanel Access Level
Root Administrator
cPanelLauren said:
You can still employ open_basedir restrictions my modifying the PHP.ini for each php version by going to WHM>>Software>>MultiPHP INI Editor.
Click to expand...
So need uncomment the line? Do not need add any thing after open_basedir = ?

Example:

Code: 
; open_basedir, if set, limits all file operations to the defined directory
; and below.  This directive makes most sense if used in a per-directory
; or per-virtualhost web server configuration file.
; http://php.net/open-basedir
open_basedir =
 
cPanelLauren

cPanelLauren

Product Owner II
Staff member
Nov 14, 2017
13,266
1,304
363
Houston
HI @Nirjonadda


If the line at the bottom of the section with
Code: 
open_basedir =
is commented out then yes you would uncomment

For information on what should be included in the string, I would suggest reading the php documentation which it explains it's use
PHP: Description of core php.ini directives - Manual
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
W The following conflicts are installed on this machine. They will be removed as part of this package selection Web Servers and Applications 1
T Removed composer from root Web Servers and Applications 1
D SOLVED MaxRedirects option has been removed Web Servers and Applications 5
A SOLVED Was CGI Center interface removed from cPanel? Web Servers and Applications 3
V EasyApache 4 optimize .htaccess removed? Web Servers and Applications 6
Similar threads
The following conflicts are installed on this machine. They will be removed as part of this package selection
Removed composer from root
SOLVED MaxRedirects option has been removed
SOLVED Was CGI Center interface removed from cPanel?
EasyApache 4 optimize .htaccess removed?
Top Bottom