BitMaster/LEMPer
1
0
Fork 0
mirror of https://github.com/joglomedia/LEMPer.git synced 2026-04-07 05:08:15 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

enhance php security

Browse Source
This commit is contained in:
joglomedia
2019-10-14 21:54:05 +07:00
parent f273ac3a73
commit be7d15eeef
6 changed files with 22 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
etc/php/5.6/fpm/pool.d/lemper.conf
View File

@@ -25,8 +25,10 @@ chdir = /home/lemper
security.limit_extensions = .php .php5 .php56
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com
; Custom PHP ini settings.
php_flag[display_errors] = on
php_admin_value[error_reporting] = E_ALL & ~E_NOTICE & ~E_WARNING & ~E_STRICT & ~E_DEPRECATED
php_admin_value[disable_functions] = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,exec,passthru,popen,proc_open,shell_exec,system
php_admin_value[error_log] = /var/log/php/php5.6-fpm.$pool.log
php_admin_flag[log_errors] = on
php_admin_value[memory_limit] = 128M
@@ -34,3 +36,4 @@ php_admin_value[open_basedir] = /home/lemper
php_admin_value[upload_tmp_dir] = /home/lemper/.tmp
php_admin_value[upload_max_filesize] = 10M
php_admin_value[opcache.file_cache] = /home/lemper/.opcache
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com

5
etc/php/7.0/fpm/pool.d/lemper.conf
View File

@@ -28,8 +28,10 @@ chdir = /home/lemper
security.limit_extensions = .php .php7 .php70
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com
; Custom PHP ini settings.
php_flag[display_errors] = on
php_admin_value[error_reporting] = E_ALL & ~E_NOTICE & ~E_WARNING & ~E_STRICT & ~E_DEPRECATED
php_admin_value[disable_functions] = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,exec,passthru,popen,proc_open,shell_exec,system
php_admin_value[error_log] = /var/log/php/php7.0-fpm.$pool.log
php_admin_flag[log_errors] = on
php_admin_value[memory_limit] = 128M
@@ -37,3 +39,4 @@ php_admin_value[open_basedir] = /home/lemper
php_admin_value[upload_tmp_dir] = /home/lemper/.tmp
php_admin_value[upload_max_filesize] = 10M
php_admin_value[opcache.file_cache] = /home/lemper/.opcache
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com

5
etc/php/7.1/fpm/pool.d/lemper.conf
View File

@@ -29,8 +29,10 @@ chdir = /home/lemper
security.limit_extensions = .php .php7 .php71
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com
; Custom PHP ini settings.
php_flag[display_errors] = on
php_admin_value[error_reporting] = E_ALL & ~E_NOTICE & ~E_WARNING & ~E_STRICT & ~E_DEPRECATED
php_admin_value[disable_functions] = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,exec,passthru,popen,proc_open,shell_exec,system
php_admin_value[error_log] = /var/log/php/php7.1-fpm.$pool.log
php_admin_flag[log_errors] = on
php_admin_value[memory_limit] = 128M
@@ -38,3 +40,4 @@ php_admin_value[open_basedir] = /home/lemper
php_admin_value[upload_tmp_dir] = /home/lemper/.tmp
php_admin_value[upload_max_filesize] = 10M
php_admin_value[opcache.file_cache] = /home/lemper/.opcache
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com

5
etc/php/7.2/fpm/pool.d/lemper.conf
View File

@@ -29,8 +29,10 @@ chdir = /home/lemper
security.limit_extensions = .php .php7 .php72
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com
; Custom PHP ini settings.
php_flag[display_errors] = on
php_admin_value[error_reporting] = E_ALL & ~E_NOTICE & ~E_WARNING & ~E_STRICT & ~E_DEPRECATED
php_admin_value[disable_functions] = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,exec,passthru,popen,proc_open,shell_exec,system
php_admin_value[error_log] = /var/log/php/php7.2-fpm.$pool.log
php_admin_flag[log_errors] = on
php_admin_value[memory_limit] = 128M
@@ -38,3 +40,4 @@ php_admin_value[open_basedir] = /home/lemper
php_admin_value[upload_tmp_dir] = /home/lemper/.tmp
php_admin_value[upload_max_filesize] = 10M
php_admin_value[opcache.file_cache] = /home/lemper/.opcache
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com

4
etc/php/7.3/fpm/pool.d/lemper.conf
View File

@@ -30,7 +30,8 @@ security.limit_extensions = .php .php7 .php73
; Custom PHP ini settings.
php_flag[display_errors] = on
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com
php_admin_value[error_reporting] = E_ALL & ~E_NOTICE & ~E_WARNING & ~E_STRICT & ~E_DEPRECATED
php_admin_value[disable_functions] = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,exec,passthru,popen,proc_open,shell_exec,system
php_admin_value[error_log] = /var/log/php/php7.3-fpm.$pool.log
php_admin_flag[log_errors] = on
php_admin_value[memory_limit] = 128M
@@ -38,3 +39,4 @@ php_admin_value[open_basedir] = /home/lemper
php_admin_value[upload_tmp_dir] = /home/lemper/.tmp
php_admin_value[upload_max_filesize] = 10M
php_admin_value[opcache.file_cache] = /home/lemper/.opcache
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com

4
etc/php/7.4/fpm/pool.d/lemper.conf
View File

@@ -30,7 +30,8 @@ security.limit_extensions = .php .php7 .php74
; Custom PHP ini settings.
php_flag[display_errors] = on
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com
php_admin_value[error_reporting] = E_ALL & ~E_NOTICE & ~E_WARNING & ~E_STRICT & ~E_DEPRECATED
php_admin_value[disable_functions] = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,exec,passthru,popen,proc_open,shell_exec,system
php_admin_value[error_log] = /var/log/php/php7.4-fpm.$pool.log
php_admin_flag[log_errors] = on
php_admin_value[memory_limit] = 128M
@@ -38,3 +39,4 @@ php_admin_value[open_basedir] = /home/lemper
php_admin_value[upload_tmp_dir] = /home/lemper/.tmp
php_admin_value[upload_max_filesize] = 10M
php_admin_value[opcache.file_cache] = /home/lemper/.opcache
;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f you@yourmail.com