secure streber installations/

Topics

CreatedSep 25, 2006 / pixtur

ModifiedJan 6, 2009 / phsouzacruz

View previous 9 versions

Attached files

No files uploaded

This page covers methods to increase security of streber installations.

Encryptionπ

https strongly recommendedπ

Serverπ

PHPπ

php.iniπ

remove phpInfo()π

Databaseπ

Recommented readingπ

PHP-Sicherheit, C. Kunz, P. Prochaska; 2006; dpunkt.verlagπ

This book is a very good summary of security related problems with php installations. It's excellently written.

also see:

security issues with streber

3 Comments

madlyr:Tom, did you check if installation works on https?

6 years ago

I always disable mod_rewrite rule forcing to https on my installation to make shure this process will "normal" :-).

It seems, that streber works seamleassly over https but we should check if there is no absolute http or https prefixes in url's. Is it correct?

pixtur:https

6 years ago

I use an https-installation for my commercial projects. There have been some issues which I fixed in v0.0592. It works without problems.

madlyr:Reply to https - Good to hear it, we should add this info to docs/wiki pages

6 years ago (2. update 6 years ago)

:-)

Add Comment

Comment
(Wiki format)

Summary

Request feedback

Please copy the text

secure streber installations/#2162