Monday, August 3, 2009

disable these directives.

Question: Which of the following php.ini directives should be disabled to improve the outward security of your application?

Answer: (chose 4)

1. safe_mode
2. magic_quotes_gpc
3. register_globals
4. display_errors
5. allow_url_fopen
See the book OpenCart 1.4 Template Design Cookbook.
See the book Joomla Mobile Development Beginners Guide

List of my works:

Opencart Extensions:

  1. Product Based Quantity Wise Shipping: Find it here.
  2. OpenSSLCOMMERZ: integrate SSLCOMMERZ with opencart: Find it here.
  3. Fine Search v.1.0 - Improves Opencart search feature to find relevant: Find it here.
  4. Opensweetcaptcha - An easy way to generate attractive captcha for your system!: Find it here.
  5. Custom Field Product - add unlimited custom fields to the product form: Find it here.
  6. Formcaptcha - add captcha on the register page: Find it here.

My Books:

  1. OpenCart 1.4 Template Design Cookbook.
  2. Joomla Mobile Development Beginners Guide


Seal said...

Q5) tricky – the question asks about – which directives should be DISABLED to IMPROVE the outward security…

Note the keyword DISABLED

so I disagree with just the first part of you answer and I will go with a, c, d, e,

magic_quotes_gpc – this needs to be enabled to improve outward security. And even then its not 100% because this function only escapes some characters – programmer would still need to escape some special characters

Tahsin Hasan said...

Thanks Seal for ur comment. the questions says 'outward security', so it will be d) display_errors.