Custom php.ini question

filip212

• September 04, 2017 17:40

Hello, If i have some settings in whm administration in multi php ini editor and i allow multi php ini editor in cpanel accounts are users possible to enable functions which i disabled in administration of WHM? Or rewrite memory limit or any other functions or data i have setuped in WHM administration multi php ini editor?

• 

  cPanelMichael

  • September 06, 2017 17:15

  Hello, The following documents explain how this works: MultiPHP INI Editor for cPanel - Version 66 Documentation - cPanel Documentation How to Edit Your php.ini File - cPanel Knowledge Base - cPanel Documentation Let us know if this helps. Thank you.

  0
• 

  filip212

  • September 07, 2017 22:23

  I think no. I cant find here which global settings it can and which cant override...

  0
• 

  hendranata

  • September 07, 2017 23:51

  completely override php.ini is not a good way right? better u can change local value using htaccess or user.ini

  0
• 

  sparek-3

  • September 08, 2017 01:15

  It really just depends on your value of security vs. ease of use for your customers. The downside to allowing users to include their own php.ini or set directives in their own .user.ini file, is the potential to override security measures - whether this be knowingly or unknowingly by the customer. On the plus side, if users are able to use their own php.ini or .user.ini file, they can easily set directives without having to bother their web host. If you don't allow users to use their own php.ini file or set directives in their own .user.ini files, you can keep security intact by insuring that quality values are enabled for your users. The downside, your customers pretty much have to contact you if they need a value changed. Personally for me, I value security, so I side with the second option. Otherwise, you run the risk of someone setting their memory_limit to 10GB because some blog some where told the user to do that. And then finding out that one account, that isn't paying you very much, has 500 plugins enabled on their site and is using up all of the server's memory. It's important to note that security and ease of use is always going to be a give and take. The easier you make it for end-users to perform an action or task, the more likely that is to be abused and thus become a hit to security. But if you make certain things too difficult to do in the name of security, you risk alienating your customers. Just where you fit on that scale is up to you, but you're never going to be able to keep everyone happy.

  0
• 

  cPanelMichael

  • September 11, 2017 17:10

  I think no. I cant find here which global settings it can and which cant override...

  
  The following PHP documents are also helpful if you want to determine which values are changeable globally versus per-account or per-ini: PHP: Where a configuration setting may be set - Manual PHP: List of php.ini directives - Manual Thank you.

  0

Please sign in to leave a comment.