11
script_fu
Re: Changing allow_url_fopen state on shared server

Okay this is the second response from tech support. I could not get this to work either. Dave thanks for the response but I still want to fix this. The protector module is installed on a Clan Gameing Site. We all know how sites like that attract hackers.
-------------------------------------------------------

Your helpdesk ticket has just been updated by xxxxx

Details:
'
Billy,

In the index php file, whichever file is always called add this PHP
code to the top of the file:

ini_set(\"allow_url_fopen\", \"0\");


Hum can anyone get this code to work?

12
Catzwolf
Re: Changing allow_url_fopen state on shared server
  • 2005/6/4 12:33

  • Catzwolf

  • Home away from home

  • Posts: 1392

  • Since: 2007/9/30


Dave is right, you cannot change this setting by using the method that has been suggested to you. This setting can only be changed at server level ( editing php.ini ).

I would say that 'allow_url_fopen' isn't a security threat, but its not one that is top of my list and if it is treated correctly then it should pose little threat.

ATB

Catz

13
script_fu
Re: Changing allow_url_fopen state on shared server

Cats thank you for your post. I respect your wisdom and all you have done for xoops. Glad to see you back! You have been missed!!

Regards
Billy

14
Dave_L
Re: Changing allow_url_fopen state on shared server
  • 2005/6/4 14:14

  • Dave_L

  • XOOPS is my life!

  • Posts: 2277

  • Since: 2003/11/7


script_fu, if you think your tech support might be interested, here's the manual page that shows which settings can be changed with ini_set: http://us2.php.net/manual/en/ini.php

Since allow_url_open has Changeable=PHP_INI_SYSTEM (for PHP > 4.3.4), it can only be set in php.ini or httpd.conf.

Actually, I'm not even sure it can be changed in httpd.conf; I'm trying to do that on one server, and it doesn't seem to work.

15
script_fu
Re: Changing allow_url_fopen state on shared server

Guess I should look for a better reseller account? I've read all the posts and from what I can tell this setting wont affect (RSS). Can any of you elaborate a lil?


--------------------------------------------------------
Tech Support 2005-06-04 13:08:02
Hello,

This php setting can be turned off only server wide.
As this is a shared environment we can't turn it off, as other users might be using it (e.g. RSS feeds).
This option won't affect your XOOPS installation, you will just get a warning.

--------------------------------------------------------

Well this pretty much shuts down getting the protector module to work the correct way for me. Thank you dave for your time.

Login

Who's Online

227 user(s) are online (186 user(s) are browsing Support Forums)


Members: 0


Guests: 227


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits