User Can Change php.ini Settings

mahdy_sharifi

• November 03, 2016 14:54

Cpanel use cgi handler in EA4, so client can change php.ini setting . I want know, may this have security risk because client can bypass server security ? Regard

• 

  cPanelMichael

  • November 03, 2016 21:38

  Hello, You cannot use Apache directives (for example, the php_value directive) with the mod_cgi or the mod_cgid Apache modules. Also, with the CGI handler, the system only uses the values that the /opt/cpanel/ea-php##/root/etc/php.ini file or the.ini files in the /opt/cpanel/ea-php##/root/etc/php.d/ directory specify. This is documented at: The cPanel PHPRC PHP Patch for EasyApache 4 - EasyApache 4 - cPanel Documentation Thank you.

  0

Please sign in to leave a comment.