|
@@ -306,12 +306,12 @@ serialize_precision = -1
|
|
|
; http://php.net/open-basedir
|
|
; http://php.net/open-basedir
|
|
|
;open_basedir =
|
|
;open_basedir =
|
|
|
|
|
|
|
|
-; This directive allows you to disable certain functions for security reasons.
|
|
|
|
|
|
|
+; This directive allows you to disable certain functions.
|
|
|
; It receives a comma-delimited list of function names.
|
|
; It receives a comma-delimited list of function names.
|
|
|
; http://php.net/disable-functions
|
|
; http://php.net/disable-functions
|
|
|
disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare,passthru,system,proc_open,popen,show_source,
|
|
disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare,passthru,system,proc_open,popen,show_source,
|
|
|
|
|
|
|
|
-; This directive allows you to disable certain classes for security reasons.
|
|
|
|
|
|
|
+; This directive allows you to disable certain classes.
|
|
|
; It receives a comma-delimited list of class names.
|
|
; It receives a comma-delimited list of class names.
|
|
|
; http://php.net/disable-classes
|
|
; http://php.net/disable-classes
|
|
|
disable_classes =
|
|
disable_classes =
|
|
@@ -404,7 +404,7 @@ max_input_time = 120
|
|
|
; How many GET/POST/COOKIE input variables may be accepted
|
|
; How many GET/POST/COOKIE input variables may be accepted
|
|
|
;max_input_vars = 1000
|
|
;max_input_vars = 1000
|
|
|
|
|
|
|
|
-; Maximum amount of memory a script may consume (128MB)
|
|
|
|
|
|
|
+; Maximum amount of memory a script may consume
|
|
|
; http://php.net/memory-limit
|
|
; http://php.net/memory-limit
|
|
|
memory_limit = 128M
|
|
memory_limit = 128M
|
|
|
|
|
|
|
@@ -1390,7 +1390,8 @@ session.cookie_domain =
|
|
|
session.cookie_httponly =
|
|
session.cookie_httponly =
|
|
|
|
|
|
|
|
; Add SameSite attribute to cookie to help mitigate Cross-Site Request Forgery (CSRF/XSRF)
|
|
; Add SameSite attribute to cookie to help mitigate Cross-Site Request Forgery (CSRF/XSRF)
|
|
|
-; Current valid values are "Lax" or "Strict"
|
|
|
|
|
|
|
+; Current valid values are "Strict", "Lax" or "None". When using "None",
|
|
|
|
|
+; make sure to include the quotes, as `none` is interpreted like `false` in ini files.
|
|
|
; https://tools.ietf.org/html/draft-west-first-party-cookies-07
|
|
; https://tools.ietf.org/html/draft-west-first-party-cookies-07
|
|
|
session.cookie_samesite =
|
|
session.cookie_samesite =
|
|
|
|
|
|
|
@@ -1426,8 +1427,8 @@ session.gc_maxlifetime = 1440
|
|
|
; (see session.save_path above), then garbage collection does *not*
|
|
; (see session.save_path above), then garbage collection does *not*
|
|
|
; happen automatically. You will need to do your own garbage
|
|
; happen automatically. You will need to do your own garbage
|
|
|
; collection through a shell script, cron entry, or some other method.
|
|
; collection through a shell script, cron entry, or some other method.
|
|
|
-; For example, the following script would is the equivalent of
|
|
|
|
|
-; setting session.gc_maxlifetime to 1440 (1440 seconds = 24 minutes):
|
|
|
|
|
|
|
+; For example, the following script is the equivalent of setting
|
|
|
|
|
+; session.gc_maxlifetime to 1440 (1440 seconds = 24 minutes):
|
|
|
; find /path/to/sessions -cmin +24 -type f | xargs rm
|
|
; find /path/to/sessions -cmin +24 -type f | xargs rm
|
|
|
|
|
|
|
|
; Check HTTP Referer to invalidate externally stored URLs containing ids.
|
|
; Check HTTP Referer to invalidate externally stored URLs containing ids.
|
Alexandros