Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Quick Links


Categories

In this Discussion

Do you recommend enabling PHP open_basedir Tweak?
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

Do you recommend enabling PHP open_basedir Tweak?

PremiumNPremiumN Member
in General

As in the title, in a shared hosting server is it recommended to enable PHP open_basedir?

Thanks

Comments

  • GreenHostBoxGreenHostBox Member

    Yes

  • DannyAlexDannyAlex Member

    Enable it for security.

  • PremiumNPremiumN Member

    Got it.

    Topic can be closed!

  • nexmarknexmark Member

    Just get CloudLinux and don't worry!

  • frixelsolutionsfrixelsolutions Member

    @nexmark said:
    Just get CloudLinux and don't worry!

    CloudLinux is very helpful but it's not just a set-and-forget solution that makes your server unhackable instantly after installing it.

    Thanked by 1linuxthefish
  • BoxodeBoxode Member

    @mpkossen

  • salathesalathe Member

    @PremiumN said:
    As in the title, in a shared hosting server is it recommended to enable PHP open_basedir?

    In general, it is recommended to enable that directive. However, don't be under the allusion (if you were) that it will magically make your code "safe".

    open_basedir is not so much about security, as helping with code sanity (though the two can be related). open_basedir is a small but useful layer that helps to verify that the PHP code is only able to access a given set of directories, by giving us an error when it tries to access a file outside of the directories we say.

    If you're looking to secure your server, with respect to PHP and in a wider sense, then open_basedir is just one tiny step in that direction.

This discussion has been closed.