[dev] turn off allow_url_include in core.php

Chuck Hagenbuch chuck at horde.org
Sat Feb 14 04:26:36 UTC 2009

Previous message: [dev] Hermes - Assign Cost Objects to Employees
Next message: [dev] turn off allow_url_include in core.php
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi folks-

Does anyone see a reason not to add:

ini_set('allow_url_include', 0);

to the other ini settings in lib/core.php, as another security check?

-chuck

Previous message: [dev] Hermes - Assign Cost Objects to Employees
Next message: [dev] turn off allow_url_include in core.php
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the dev mailing list