Javier Fernández-Sanguino Peña wrote:
> That is, unless you configure PHP to prevent this kind of attacks by
> setting 'safe_mode' to on and setting 'open_basedir' to an specific set of
> directories. But, then again, you can also prevent remote file inclusion by
> setting 'allow_url_fopen' to 'Off'.
And you can prevent almost every kind of "memory attack" by patching the
kernel with grsecurity or some other stuff :)
Bye
Gerardo
Received on Sun Mar 20 2005 - 01:09:17 GMT