Magento Forums
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Which of these functions can I disable in PHP.ini? What does Magento2 use?

‎01-31-2017 05:06 PM
‎01-31-2017 05:06 PM

Which of these functions can I disable in PHP.ini? What does Magento2 use?

Hi community,

 

I'm attempting to lock down my server and I'd like to disable some high risk functions (listed below).

 

Could someone tell me which ones Magento2 needs to work correctly so I can disable the rest?

 

system, exec, shell_exec, passthru, phpinfo, show_source, popen, proc_open, fopen_with_path, dbmopen, dbase_open, putenv, move_uploaded_file, chdir, mkdir, rmdir, chmod, rename, filepro, filepro_rowcount, filepro_retrieve, posix_mkfifo, ini_set

Labels:
0 Kudos
2 REPLIES 2
‎02-08-2017 06:13 PM
‎02-08-2017 06:13 PM

Re: Which of these functions can I disable in PHP.ini? What does Magento2 use?

Hi @magentomatt,

 


More than a week has passed since you created this post.
Were you able to find a solution?

 

 

Best regards,

Gabriel

Welcome to the Magento Forums. Remember to introduce yourself and read the Magento Forums Guidelines.
0 Kudos
‎02-08-2017 06:34 PM
‎02-08-2017 06:34 PM

Re: Which of these functions can I disable in PHP.ini? What does Magento2 use?

Hi Gabriel,

 

Actually I was rather hoping someone who knows the ins and outs of Magento from a development point of view might be able to advise as I haven't added any of the functions to my disable_functions list, and I probably should.

 

Unfortunately, I'm not sure what features it'll break so I haven't yet done so but I would like to.

 

Is my question in the right place? Or should we move it somewhere more appropriate?

 

Thanks in advance.

0 Kudos