Anson Cheung has a new post sharing eight things to change on your PHP install to help make things a bit more secure (from a platform standpoint, not in the code).
Obviously, PHP+ MySQL + Apache is a popular web technology.Its components are powerful, versatile and Free. However, the default settings ship with PHP is not suitable for production sites. Here, it is a check list of settings that are intended to harden the default PHP installation.
The list of eight includes things like:
- Disable Register Global
- Posing Limit
- Hiding The Presence Of PHP
- Advanced Safe Mode setting