server audit failure
- version = 5.5.5 - ~~~ Does UNA run better under 7.2? Surely it would. What is the highest, safest version of PHP which UNA runs on?
- disable_functions = exec,passthru,system,shell_exec - FAIL (must be without shell_exec,eval,assert,phpinfo,getenv,ini_set,mail,fsockopen,chmod,parse_ini_file,readfile,esc ~~~ What exactly is missing or misconfigured? Why the failure here? Could it be in my access file? php ini file? user php file?
- Thank you for reviewing my problem!
-
- · Cem
- ·
with 7.4.3 there is no problem and faster.
safety depends on how you use php.
-
- · banister
- ·
I will bump on up to 7.2 right now. Everything earlier than 7.2 is deprecated.I went from 5.5.5 to 5.6 earlier today.
Thanks for the inside story, Cem. I did not notice this info on GitHub but it is likely right there.
-
- · banister
- ·
Doing fine in 7.4.8. Surely these newer version are much, much safer considering that php is so popular and hacked in every possible way. Leaving me to think that the hackers are smarter than most programmers. Haha.
As you noted, it's faster too.
-
-
- · Jopel
-
·
In reply to Jopel
J
- ·
Hi,
Should it be exactly like this?
disable_functions = shell_exec,eval,assert,phpinfo,getenv,ini_set,mail,fsockopen,chmod,parse_ini_file,readfile,escapeshellcmd,fput,popen
Thanks
-
-
·
LeonidS
-
·
In reply to Jopel
J
- ·
Hi @Jopel !
Yes, the disabled_functions list shouldn't contain the functions, mentioned in the brackets.
-
·
LeonidS
-
- · RJ Arsenault
- ·
I'm running on 8.0.16 (the newest I believe) and it is very responsive, with no issues --- Dedicated Cloud Server on Ubuntu 20.04