kangle 安全 解决PHP跨站权限漏洞问题,设置tmp临时文件目录,open_basedir函数方案
我们来解决这个的防护方法就是设置php-templete.ini文件,找到open_basedir,把前面的分号去掉,如下所示即可解决此问题。
; open_basedir, if set, limits all file operations to the defined directory
; and below.This directive makes most sense if used in a per-directory
; or per-virtualhost web server configuration file. This directive is
; *NOT* affected by whether Safe Mode is turned On or Off.
open_basedir = "${doc_root}:/tmp"
保存重启下web,是不是好了呢
趁现在多玩 发表于 2014/12/18 16:00
这样也可以
亮瞎了吧~哈哈
页:
[1]