allow_URL_fopen

Hello all,

allow_URL_fopen represents a major security breach if activated on a server.

why don't you offer the possibility to use Curl ?

http://www.christianschenk.org/blog/php-curl-allow-url-fopen/

Replies (1)

· Alex T⚜️

· 2017-11-19T09:45:44+0000
It's old information, in the past there was one setting in php - allow_url_fopen, and it caused secutity risk since it was possible to include php files by external URLs, now there are two options (since PHP 5.2):

1 - allow_url_fopen - which is safe to use since PHP 5.2

2 - allow_url_include - which is better to keep in OFF state

Login or Join to comment.

kankan

1

1

Info

Category:

Added:

2017-11-13T15:06:25+0000

Changed:

2017-11-13T15:06:25+0000