Reply to post: Disable "allow_url_fopen"?

So phar, so FUD: PHP flaw puts WordPress sites at risk of hacks

Peter X

Disable "allow_url_fopen"?

So another case for disabling "allow_url_fopen"?

And on a related note, it is **utterly ridiculous** that the PHP developers add features that extend the functionality of existing functions without requiring them to be explicitly enabled. Even the default Debian PHP production options are far too liberal for my liking.

/me adjusts my evil sysadmin hat for comfort.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019