PHP hardening / security tool

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

Post Reply
pastcow
Forum Newbie
Posts: 5
Joined: Sun Oct 04, 2009 3:35 am
Location: Uk/Australia

PHP hardening / security tool

Post by pastcow »

Hey everyone,
I've released a script I wrote about a year ago for hardening / securing PHP - its a PHP script that you run which goes through all your PHP.ini settings and alerts you to any settings that you might want to change in order to secure your PHP installation. Obviously the settings wont meet everyone needs and there isn't any support for the suhosin module yet but I'd like suggestions about the recommended settings / comments / or any bugs you notice.

This link explains a little more about it:
http://www.idontplaydarts.com/2011/02/h ... -on-linux/

You can download the code here:
http://www.idontplaydarts.com/wp-conten ... P-conf.tar

:)
Post Reply