The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

/usr/local/cpanel/3rdparty/etc/php.ini ?!

Discussion in 'General Discussion' started by sehh, Dec 2, 2007.

  1. sehh

    sehh Well-Known Member

    Joined:
    Feb 11, 2006
    Messages:
    579
    Likes Received:
    5
    Trophy Points:
    18
    Location:
    Europe
    What exactly is the use of this php ini file? /usr/local/cpanel/3rdparty/etc/php.ini

    Is it used for the internal PHP used by cPanel?

    If so, why does it have register globals enabled? Its a major security risk, i believe.
     
  2. jenlepp

    jenlepp Well-Known Member

    Joined:
    Jul 4, 2005
    Messages:
    116
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Liberty Hill, TX
    cPanel Access Level:
    DataCenter Provider
    cPanel runs its own PHP for its own purposes - be careful editing this, as it can break things on your cPanel.
     
  3. sehh

    sehh Well-Known Member

    Joined:
    Feb 11, 2006
    Messages:
    579
    Likes Received:
    5
    Trophy Points:
    18
    Location:
    Europe
    sure, but how can we confirm that the above file is indeed used by cPanel's PHP?

    also, why is registered globals enabled? thats a major security risk.
     
  4. jenlepp

    jenlepp Well-Known Member

    Joined:
    Jul 4, 2005
    Messages:
    116
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Liberty Hill, TX
    cPanel Access Level:
    DataCenter Provider
    Well, googling /usr/local/cpanel/3rdparty/etc/php.ini is a heckuva place to start, since it comes up with numerous discussions, most of them pertaining to problems in /usr/local/cpanel/3rdparty/etc/php.ini with Fantastico installation (as Fantastico uses cPanels internal PHP to install).

    Well, one could extrapolate that cpanel has its own internal PHP for add ons and third party installs and itself precisely because it needs to use wider variables and looser permissions than would be recommended on a server for normal PHP processing (example - turn off shell_exec in there and see how far Fantastico gets when installing).

    But that's just a guess.
     
Loading...

Share This Page