Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

suPHP & php.ini configuration

Discussion in 'General Discussion' started by Kurieuo, Feb 12, 2009.

  1. Kurieuo

    Kurieuo Well-Known Member

    Joined:
    Dec 13, 2002
    Messages:
    100
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    Australia
    I recently made the move to suPHP. I must say, despite my research saying how much security if offers, I am looking back just a little.

    For example, I do not like how a local php.ini file can be used to overwrite settings I'd prefer not overwritable in the main php.ini file. It would also be good to lock certain settings in, like memory_limit. I already have one user using more memory than I'd like them to, although I've added restrictions in my resource monitor to try counter this. *sigh* .

    I also do not like the fact if a local php.ini file is created, all settings within the main php.ini configuration are ignored, even though the local php.ini may not overwrite such settings. I do love that users are bound to their own names, but surely there is a way to configure suPHP or something to include the main php.ini settings in the local php.ini file by default without the user having to copy and paste all the settings in?
     
    #1 Kurieuo, Feb 12, 2009
    Last edited: Feb 12, 2009
  2. JawadArshad

    JawadArshad Well-Known Member
    PartnerNOC

    Joined:
    Apr 8, 2008
    Messages:
    458
    Likes Received:
    6
    Trophy Points:
    68
    Location:
    PK
    cPanel Access Level:
    DataCenter Provider
    Yes, sometimes you do not want users to overwrite the parameters like memory_limit max_execution_time etc. A workaround would be to define a specific php.ini file with your preferred settings and add the following directive to the .htaccess file of the account where you want these settings.

    suPHP_ConfigPath /path/to/folder

    The php.ini file placed in 'folder' will be used. If you do not want users to change these settings, simply chattr the .htaccess file and make it immutable. Not the best solution as it may prevent users from applying redirects.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 JawadArshad, Feb 12, 2009
    Last edited: Feb 12, 2009
  3. britsenigma

    britsenigma Well-Known Member

    Joined:
    Dec 14, 2008
    Messages:
    85
    Likes Received:
    0
    Trophy Points:
    56
    "For example, I do not like how a local php.ini file can be used to overwrite settings"

    You can lock this when you build apache. Do a Find for ".ini" under Exhaustive options and you'll find the tickbox, can't the exact name.
     
    #3 britsenigma, Feb 12, 2009
(You must log in or sign up to post here.)
Loading...
Similar Threads - suPHP configuration
  1. Un Area

    mod_suphp question

    Un Area, May 14, 2018, in forum: Security
    Replies:
    2
    Views:
    77
    cPanelMichael
    May 15, 2018
  2. joaosavioli

    mod_ruid2+jail apache vs suphp (security)

    joaosavioli, Mar 21, 2018, in forum: EasyApache
    Replies:
    1
    Views:
    175
    cPanelMichael
    Mar 22, 2018
  3. PowerChaos

    SOLVED PHP FPM and SuPHP/Fastcgid

    PowerChaos, Feb 23, 2018, in forum: EasyApache
    Replies:
    5
    Views:
    380
    cPanelMichael
    Feb 26, 2018
  4. ItsMattSon

    How to configure SuPHP to use only the MultiPHP INI file, not user inis, and open_basedir?

    ItsMattSon, Jan 31, 2018, in forum: Security
    Replies:
    30
    Views:
    846
    bgarrant
    Apr 6, 2018
  5. Rakaris Bakaris

    php-fpm works but not suphp

    Rakaris Bakaris, Sep 30, 2017, in forum: EasyApache
    Replies:
    5
    Views:
    564
    cPanelMichael
    Oct 4, 2017

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice