What is the most secure PHP setup?
Hi ppl,
I wanted advise on what is the optimal PHP setup on CPanel for security today, i.e. security in preference to speed. Using Apache as the web server, and using PHP 8.x+ we have php-fpm settings (speed) and then we have the handlers - none, suphp, cgi, lsapi.
I was always of the view that suphp was the most secure handler because it forced all processes to be run under the user ownership hence making it difficult for hacked Cpanel accounts to affect other Cpanel accounts. Is this the case?
Please educate me further.
Regards,
Suhail.
-
Hey there! I try not to worry about the "best" as that will vary for different users. However, our guide at https://docs.cpanel.net/ea4/php/php-handlers/ explains how the modern CGI module using our defaults is just as secure as suPHP. I'd recommend reading through that and then deciding what the best option is for your machine and users.
0
Please sign in to leave a comment.
Comments
1 comment