Php Hardening option allow_url_fopen and allow_url_include

Set

allow_url_fopen Off

Disabling this option prevents attackers from opening remote files from your server via file inclusion vulnerabilities.

Set

allow_url_include Off

Disabling this option prevents attackers from including remote files from your server via file inclusion vulnerabilities.

Trackback URI | Comments RSS

Leave a Reply

You must be logged in to post a comment.