Any concerns with running a custom version of php ini file in the SMF root

Started by durangod, December 22, 2023, 02:25:22 AM

Previous topic - Next topic

durangod

Hi,

I was just curious if there were any concerns i should be aware of specifically to SMF when running a custom php ini file.  I usually have a custom ini file on each of my sites and i want to do the same in the SMF root..   

Thanks :)
My name is short for durango dave (i am not a god lol)

Sesquipedalian

I promise you nothing.

Sesqu... Sesqui... what?
Sesquipedalian, the best word in the English language.

durangod

Ok thanks, i did not notice anything but just wanted to check to be sure. 
My name is short for durango dave (i am not a god lol)

Arantor

Just make sure your Apache/nginx/whatever is configured not to send php.ini files if you're putting them in what is otherwise a web-accessible folder. (.htaccess files already have a special rule in Apache's config to not let them be served.)
Holder of controversial views, all of which my own.


durangod

Great thanks...  appreciat it..  :)

I have this in my htaccess

<Files .htaccess>
order allow,deny
deny from all
</Files>

<Files php.ini>
order allow,deny
deny from all
</Files>

#for better security
ServerSignature Off


My name is short for durango dave (i am not a god lol)

Advertisement: