Reputation: 31
PHP Configuration Module Security Considerations
What are the modules in a PHP configuration that are considered higher risk and should be avoided or additional security steps should be considered when implementing? (All Apache/Nginx/Infrastructure Considerations aside)
Upvotes: 3
Views: 233
Answers (2)
Reputation: 123
I agree with Rook. However, I will say that you can't really say which modules are riskier than other. Take a look at their documentation. Search google for "modulename bugs", "modulename exploits", etc. Most of the answers you get here would be opinion. Try to get the information you need from the sources.
Upvotes: 1
Reputation: 67039
If you are worried about your php configuration then you should run PHPSecInfo. If you are worried about sensitive php functionality you should take a look at Exploitable PHP Functions.
Upvotes: 2
Related Questions
- PHP security: include and config.ini
- PHP - Security what is best way?
- PHP security concern
- making php web application secure
- How to protect configuration file in PHP?
- security check on my php configuration file
- Secure Include php
- Keeping PHP Includes Secure
- Security Management?
- Best Practices for creating a PHP INI/CONFIG file and keep it secure