allow_URL_fopen
1
1

Hello all,

allow_URL_fopen represents a major security breach if activated on a server.

why don't you offer the possibility to use Curl ?

http://www.christianschenk.org/blog/php-curl-allow-url-fopen/

34
  • It's old information, in the past there was one setting in php - allow_url_fopen, and it caused secutity risk since it was possible to include php files by external URLs, now there are two options (since PHP 5.2):

    1 - allow_url_fopen - which is safe to use since PHP 5.2

    2 - allow_url_include - which is better to keep in OFF state