Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

User Can Change php.ini Settings

Discussion in 'EasyApache' started by mahdy_sharifi, Nov 3, 2016.

Tags:
  1. mahdy_sharifi

    mahdy_sharifi Well-Known Member

    Joined:
    Feb 26, 2012
    Messages:
    185
    Likes Received:
    0
    Trophy Points:
    66
    cPanel Access Level:
    Root Administrator
    Cpanel use cgi handler in EA4 , so client can change php.ini setting .
    I want know , may this have security risk because client can bypass server security ?

    Regard
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,419
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    You cannot use Apache directives (for example, the php_value directive) with the mod_cgi or the mod_cgid Apache modules. Also, with the CGI handler, the system only uses the values that the /opt/cpanel/ea-php##/root/etc/php.ini file or the.ini files in the /opt/cpanel/ea-php##/root/etc/php.d/ directory specify. This is documented at:

    The cPanel PHPRC PHP Patch for EasyApache 4 - EasyApache 4 - cPanel Documentation

    Thank you.
     
Loading...

Share This Page