56
I downloaded protector and I enabled
'session.use_trans_sid' : off ok
'XOOPS_DB_PREFIX' : removed - Davidl2 ok
'Password for rescue' : ok
BUT i didnt understand how to enable the rest. please tell me specific directions.. its so confusing. Thanks!
'register_globals' : on Not secure
This setting invites a variety of injecting attacks.
If you can put .htaccess, edit or create...
/home/boaboa/public_html/.htaccess
php_flag register_globals off
'allow_url_fopen' : on Not secure
This setting allows attackers to execute arbitrary scripts on remote servers.
Only administrator can change this option.
If you are an admin, edit php.ini or httpd.conf.
Sample of httpd.conf:
php_admin_flag allow_url_fopen off
Else, claim it to your administrators.
'mainfile.php' : missing precheck Not secure
You should edit your mainfile.php like written in README.