PHP question
Brian A. Seklecki
bseklecki at collaborativefusion.com
Tue Jan 20 08:21:23 PST 2009
On Wed, 2009-01-14 at 15:26 -0500, Albert Thiel wrote:
> I am trying to figure out how to get a working Apache 2.x server with PHP in a safe configuration (or
> as safe as possible based upon all the vulns). I do not need a database.
>
> What version and options is my best bet. I have tried on my own but losing it. Nothing I have tried
> works.
This is the wrong list of general PHP setup instructions.
PHP4 is dead. PHP5 is nearing beta1 of 5.3. Use 5.2.9 in the mean
time.
# cd /usr/ports/lang/php5 && make config && make install
Modify your apache22 httpd.conf accordingly to activate the module.
There are thousands of sites that explain the proces.
Security with PHP involves writing code well, both in your application,
and in the PHP engine -- as well as responsible administration: locking
out insecure features in php.ini
~BAS
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
Url : http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20090120/77514438/attachment.pgp
More information about the freebsd-ports
mailing list