hawksfan Posted August 7, 2010 Posted August 7, 2010 Just curious what the general consensus on enabling this function at a global level would be (since it sounds like that's the only way to enable it)?
.Immortal Posted August 7, 2010 Posted August 7, 2010 Just curious what the general consensus on enabling this function at a global level would be (since it sounds like that's the only way to enable it)? Are you hosted on a shared/dedicated/vps? If on a vps/dedicated, are you hosting just yourself or also other people?
hawksfan Posted August 7, 2010 Author Posted August 7, 2010 VPS & I'm just hosting myself, no plans to share it with anyone else. As I understand it, this function just applies to security within the server across accounts hosted on it, is that correct?
.Immortal Posted August 7, 2010 Posted August 7, 2010 Well the php exec function correct me if I'm wrong anyone executes external programs. Usually shared hosts disable this function as malicious users can wreak havoc with it. Since I haven't had a need for the function, I have disabled by default. I suggest if you don't have a need for it, just disable it in php.ini.
3dblake Posted August 15, 2010 Posted August 15, 2010 The function itself isn't evil, it lets you run system commands via PHP, if you have a need for it then I'd say leave it on. Always be diligent about keeping everything else up to date on the box, especially your PHP apps.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.