Security and Safe ModeThe PHP INI file enables
Security and Safe ModeThe PHP INI file enables you to crack down on the security settings if you would like. You can hide PHP, limit memory usage and execution times, and enable safe-mode operation. Safe mode is ideal for virtual hosting environments. It enables you to lock down the way PHP operates for the system. This prevents users from doing many malicious things such as opening system core files, reading other client s files, tampering with system information, or executing certain functions. safe_modeDefault: OffAllowed: On, OffThis is the master safe mode setting. If enabled, the rest of the safe mode settings will be enforced with their default values. If you are not running a virtual hosting client system, you can opt to leave this setting disabled and disregard the rest of the safe mode settings. WARNINGIf you are a security-conscious server administrator and make these settings effective ina virtual hosting environment, be prepared for a barrage of complaints from your PHP users, especially when using third-party PHP scripts. Most third-party PHP scripts are not devel- oped with these settings in mind and might fail when they are executed. safe_mode_gidDefault: OffAllowed: Group ID/User IDThis setting allows access to files owned by the user running the script. NOTEYou should define this setting in an Apache virtual host configuration and use the User IDfor that virtual host file to this setting. safe_mode_include_dirDefault: Empty not definedAllowed: Path to directory (/directory/path) This setting defines a specific path of files to be included, and the security checks (safe_mode_ gid) are bypassed.
Hint: If you are looking for very good and affordable webspace to host and run your j2ee hosting application check Virtualwebstudio j2ee web hosting services