What are the security threats of enabling php zip extension?

M

Mugoma

Well-Known Member
Aug 1, 2016
74
4
8
Nairobi
cPanel Access Level
Root Administrator
By default EasyApache doesn't compile with php zip extension.

But we have had several users asking for it.

Are there any risks of enabling php zip extension?
 
M

Mugoma

Well-Known Member
Aug 1, 2016
74
4
8
Nairobi
cPanel Access Level
Root Administrator
I had already seen that link.

The link discusses about zip file uploads while my question is about 'PHP zip extension'. I am not conversant with the extension but don't think it has anything to do with uploading files.
 
C

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,909
2,222
463
Hello,

I'm not aware of any security issues with the PHP Zip extension itself. The security discussion would likely relate more-so the inclusion of malicious files in the zip archives that a PHP script would read. That said, we do provide a list of system administration service companies if you'd like specific security-related advice:

System Administration Services | cPanel Forums

Thanks!
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
T Help improving security Security 1
J Host header is a numeric IP address - why the fuss from mod_security? Security 7
D prestashop (ecommerce) and mod_security - legitime ip blocked Security 3
C root password and security policy Security 5
F SOLVED mod_security2 being intermittent Security 2
Similar threads
Help improving security
Host header is a numeric IP address - why the fuss from mod_security?
prestashop (ecommerce) and mod_security - legitime ip blocked
root password and security policy
SOLVED mod_security2 being intermittent
Top Bottom