search for: register_globals

Hi I am trying to turn on register_globals, but I am failing. someone trold me that I should change php.ini and I did it. ? - register_globals = Off - register_globals = On I made a php test page html/test.php <?php phpinfo(); ?> and checked it, but I can not make it. output_buffering no value no value output_handler no value no...

...ErrorDocument 404 /index.php # Set the default handler. DirectoryIndex index.php # Override PHP settings. More in sites/default/settings.php # but the following cannot be changed at runtime. # PHP 4, Apache 1. <IfModule mod_php4.c> php_value magic_quotes_gpc 0 php_value register_globals 0 php_value session.auto_start 0 </IfModule> # PHP 4, Apache 2. <IfModule sapi_apache2.c> php_value magic_quotes_gpc 0 php_value register_globals 0 php_value session.auto_start 0 </IfModule> # PHP 5,...

...P jobs forum at http://www.asterisk-jobs.com. We at Asterisk-Jobs.com appologize for the inactivity for the past while. It had come to our attention that the software running the job board was unsecure and allowed for multiple Vulnerabilities. The site also previously required the use of PHP's register_globals, which is of course less than desirable. We here at Asterisk Jobs take your information and security seriously. Thus, we decided to lay low for a while while the site was upgraded to be the secure, robust and working system that you - our users expect. And now without furthur ado, is the unveilin...

Note: forwarded message attached. __________________________________ Discover Yahoo! Have fun online with music videos, cool games, IM and more. Check it out! http://discover.yahoo.com/online.html -------------- next part -------------- An embedded message was scrubbed... From: Khubeka JM <jmkhubeka@yahoo.com> Subject: JE TROUVE QUE VOUS N'ETES PAS HONETE! Date: Sun, 26 Jun 2005

We've been holding back on this release to coincide with the Asterisk 1.4.0 release. This is mostly a compatibility release, but there are a few new features: * No longer requires register_globals in PHP * Separated code from configuration settings in ./lib/defines.php (hopefully this will make future upgrades easier) * Migrated all database interfaces to PEAR::DB which simplifies the code a bit and opens up the possibility of using other databases to host the scheduling DB (a...

Hello, We're migrating a webserver from RedHat 7.x to CentOS 4.2. In the process, we'd like to improve security. We're currently planning on making sure SELinux is enabled, mounting the /tmp partition noexec, and running PHP in safe mode, hide_errors on, register_globals off by default. vsftpd is set to chroot logins. I've seen Apache run inside a chroot jail, but that was always very hassle-prone, and ironically, when security updates came out, they weren't applied within the chroot jail, (eg, installed via yum) making it more likely to get compromi...

Hi, I'm trying to install Areskicc but with no much sucess. After installing the UI I login as root/mypass, but in the left menu I only have 3 options: Main Template, disconnect and logout. When I click on Mail Template> Show mail template it shows an error page. First, is there a way to increase the debugging level so I can know what's going on behind the scenes? Second, I've

...X.X for Asterisk 1.2 and 3.X.X for Asterisk 1.4 The reason for maintaining two versions relates to changes in the Asterisk CLI, and a single WMM release would have to have extra, likely fragile, code to support both. Changes and new features in the yet to be released updates: * No longer needs register_globals * Replaced the DB abstraction layer with PEAR:DB This opens up the possibility of a much wider choice of backend databases. but the Asterisk schedular application is still MySQL only (I might be able to migrate it to ODBC later) * Some cosmetic re-work * Better installation instructions and...

...:02 -0800 > Subject: [asterisk-users] [Announce] Web-MeetMe 3.0.0 released > We've been holding back on this release to coincide with > the Asterisk 1.4.0 release. > > This is mostly a compatibility release, but there are a > few new features: > * No longer requires register_globals in PHP > * Separated code from configuration settings in > ./lib/defines.php (hopefully this will make > future upgrades easier) > * Migrated all database interfaces to PEAR::DB > which simplifies the code a bit and opens...

...------------- Update Information: This update is considered moderate by the CentOS Development Team. This update includes several security fixes: - fixes for prevent malicious requests from overwriting the GLOBALS array (CVE-2005-3390) - a fix to stop the parse_str() function from enabling the register_globals setting (CVE-2005-3389) - fixes for Cross-Site Scripting flaws in the phpinfo() output (CVE-2005-3388) - a fix for a denial of service (process crash) in EXIF image parsing (CVE-2005-3353) All Users of PHP-5 from the CentOSPlus Repo should upgrade to these updated packages. More info is availab...

...------------- Update Information: This update is considered moderate by the CentOS Development Team. This update includes several security fixes: - fixes for prevent malicious requests from overwriting the GLOBALS array (CVE-2005-3390) - a fix to stop the parse_str() function from enabling the register_globals setting (CVE-2005-3389) - fixes for Cross-Site Scripting flaws in the phpinfo() output (CVE-2005-3388) - a fix for a denial of service (process crash) in EXIF image parsing (CVE-2005-3353) All Users of PHP-5 from the CentOSPlus Repo should upgrade to these updated packages. More info is availab...

On the Mambo CMS site there are vulnerabilities found. Whilst this is not a CentOS problem, people rent/deploy servers (CentOS) on the net with Mambo. A guy in one of the user forums on the net, had his Mambo 4.5.2 server hacked and they installed some interesting stuff in /tmp . When a server is hacked it gives bad PR for the underlying OS. <----announcement on

...------------- Update Information: This update is considered moderate by the CentOS Development Team. This update includes several security fixes: - fixes for prevent malicious requests from overwriting the GLOBALS array (CVE-2005-3390) - a fix to stop the parse_str() function from enabling the register_globals setting (CVE-2005-3389) - fixes for Cross-Site Scripting flaws in the phpinfo() output (CVE-2005-3388) - a fix for a denial of service (process crash) in EXIF image parsing (CVE-2005-3353) All Users of PHP-5 from the CentOSPlus Repo should upgrade to these updated packages. More info is availab...

...users-bounces@lists.digium.com] On Behalf Of Areski Sent: jeudi 27 janvier 2005 11:35 To: Asterisk Users Mailing List - Non-Commercial Discussion Subject: RE: [Asterisk-Users] ANNOUNCEMENT : NEW CallingCard ApplicationforAsterisk Hi Alex, Concerning the web interface, in this version we need the register_globals = On I will try to change it in the next release... To find out the error on the agi, can you run the agi script manually. php areskicc.php You will get more details about the error! Regards, Areski On Thu, 2005-01-27 at 03:07, Alexander Romanov wrote: > Hi, > > I've tried it a...

This has to be the worst documentation I have ever come acrossed. I have found two or three docs on how to install it, but they are all so different and make huge assumption about what packages you have installed and locations of files. Has anyone seen something better, I want to get this working it is quite a cool app. Jordan Novak Communications Technician Logistics Health Inc. 1319 Saint