On Wed, 2003-02-26 at 10:48, Neil Smith wrote: > Easy enough to do (my ISP does this) : Look up disable_functions in > http://www.php.net/manual/en/features.safe-mode.php > > You need to set in your php.ini file a list of disallowed functions (just > add the function_name for FTP functions to the list). You can of course do > this better by per-site configuration in Apache httpd.conf
This is not enough to stop FTP; it is easy to write an FTP client in PHP if someone wanted to. What you would effectively need to stop is all socket access from PHP. -- Best regards, Per Lundberg / Capio ApS Phone: +46-18-4186040 Fax: +46-18-4186049 Web: http://www.capio.com
signature.asc
Description: This is a digitally signed message part
