Disable some PHP functions

Disable some uneeded functions. Add these to your php.ini

disable_functions: escapeshellarg, escapeshellcmd, exec, passthru, proc_close, proc_get_status, proc_nice, proc_open, proc_terminate, shell_exec, system, pcntl_exec, pcntl_fork, popen, phpinfo

Edit: Those who managed to gain access to a web server will look for these process when you have PHP installed. If you won't use it, disable it.


Post a Comment

<< Home