1
girma
I need to know how to turn off 'allow_url_fopen'
  • 2009/4/23 12:36

  • girma

  • Just popping in

  • Posts: 8

  • Since: 2009/3/11


hello every one i need to know how to turn off this 'allow_url_fopen' : on Not secure
This setting allows attackers to execute arbitrary scripts on remote servers.
Only administrator can change this option.
If you are an admin, edit php.ini or httpd.conf.
Sample of httpd.conf:
php_admin_flag allow_url_fopen off
Else, claim it to your administrators.
and i didn't know how to edit the php.ini and i didn't know where to find php.ini or httpd.conf ... please tell me the steps to turn this off ...

Thank you ...

2
Anonymous
Re: I need to know how to turn off 'allow_url_fopen'
  • 2009/4/23 20:27

  • Anonymous

  • Posts: 0

  • Since:


You can edit these files when you have web server, but in case you just have hosting space so you need to ask hosting company for disable allow_url_fopen

3
girma
Re: I need to know how to turn off 'allow_url_fopen'
  • 2009/4/23 21:33

  • girma

  • Just popping in

  • Posts: 8

  • Since: 2009/3/11


Mowaffaq I have Godaddy hosting account ... can i do it my self in side my account ? and i didn't know what this 'allow_url_fopen' mean and if this thing turnd off can i uppload, manuplet and delet my files using my ftp ...?

Thank you ...

4
Catzwolf
Re: I need to know how to turn off 'allow_url_fopen'
  • 2009/4/24 0:23

  • Catzwolf

  • Home away from home

  • Posts: 1392

  • Since: 2007/9/30


Insert this somewhere in the code. I would put it near to the top of /include/common.php as possible but right under set_magic_quotes_runtime(0);

ini_set("allow_url_fopen"0);


or create a .htaccess file in the main folder of XOOPS and add:

php_value allow_url_fopen 0


Catz

5
Anonymous
Re: I need to know how to turn off 'allow_url_fopen'
  • 2009/4/24 0:29

  • Anonymous

  • Posts: 0

  • Since:


I think php.ini file lives in root folder of yoursite in godaddy hosting.

If you don't see it there, you can create new .txt file at your pc and add to it:

allow_url_fopen = off

then rename it to php.ini and upload it to ur root folder.

allow_url_fopen has nothing to do with files upload so you can use FTP normally.

Login

Who's Online

352 user(s) are online (241 user(s) are browsing Support Forums)


Members: 0


Guests: 352


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits