Stack Overflow
Stack Overflow

Questions tagged [suhosin]

Suhosin is an advanced protection system for PHP installations. It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core.

Suhosin is an advanced protection system for PHP installations.

It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core.

Suhosin comes in two independent parts, that can be used separately or in combination.
The first part is a small patch against the PHP core, that implements a few low-level protections against buffer overflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections.

Unlike the PHP Hardening-Patch, Suhosin is binary compatible with a normal PHP installation, which means it is compatible to a third-party binary extension like ZendOptimizer.

67 questions
1
vote
1 answer

Edit Suhosin Config Parameters

We have an Amazon EC2 instance running Ubuntu LEMP installation (nginx). We would like to modify several suhosin config parameters. We tried changing the parameters in /etc/php5/cgi/conf.d/suhosin.ini file, but it won't change the values. Upon…
hvs
  • 518
  • 1
  • 5
  • 21
1
vote
2 answers

Segmentation Fault in Apache with Wordpress

This is not a question... rather an answer. Problem Browser is returning: "ERR_EMPTY_RESPONSE", "no data received", "the connection was reset", etc... Apache error log is returning: "Segmentation fault" sudo tail -f…
Gor
  • 505
  • 1
  • 6
  • 18
1
vote
0 answers

Can't get AWS SDK for PHP Working on Ubuntu Server

I have been trying to get the AWS SDK Installed and working on my EC2 instance. I am running Ubuntu server and have tried requiring the aws.phar file in my code and also installing via PEAR. either way I get the following error: PHP Fatal error:…
JustinM151
  • 744
  • 3
  • 11
1
vote
2 answers

SugarCRM error on module loader on shared hosting

I’ve a shared hosting account and installed SugarCRM. Everything is fine except the message i get for the module loader. Here i get the message to add suhosin.executor.include.whitelist = “upload://” to the php.ini file. The message is: Upload…
coen1234
  • 43
  • 1
  • 11
1
vote
3 answers

Lost session variables using 3G dongle

I have a huge problem with session_vars and mobile 3g connections. We have a virtual campus that is accessed with username and password. On every page verifies that the user is logged with the following code:
Julio Romero
  • 11
  • 2
0
votes
1 answer

How to disable suhosin.log?

In phpmyadmin it says... "suhosin.log.* should not include SQL, otherwise you get big slowdown" How do I totally disable suhosin.log in php.ini? thanks
Hayden
  • 361
  • 4
  • 18
0
votes
1 answer

Can you use a PHP 5.3.7 suhosin-patch on PHP 5.3.8?

I am building a custom PHP rpm for PHP 5.3.8. Unfortunately, suhosin's download site does not have a 0.9.10 5.3.8 patch while they do for 5.3.7 (http://www.hardened-php.net/suhosin/download.html). Looking at PHP.net's changelog for 5.3.7, extremely…
Tim Vaillancourt
  • 15
  • 6
0
votes
1 answer

php suhosin configuration

Before I did any change to suhosin configuration, the logging shows a lot of alerts, including variable name length, value length, memory_limit, ASCIIZ null and so on. So, what I do is to change related suhosin configuration setting. i.e. increase…
chnet
  • 1,993
  • 9
  • 36
  • 51
0
votes
2 answers

WP ACF plugin max_vars issue (PHP suhosin)

I have problem with Advanced Custom Fields plugin in my Wordpress site. When I tried to add the 15th field WP redirects me to posts instead of saving the field. It's server issue beacuse I've cloned the WP with database to another server and it…
Paweł Kwiatkowski
  • 69
  • 3
  • 14
0
votes
2 answers

Suhosin and disable eval function

I have installed Suhosin on my dedicated CentOS server. centos6.7+php5.4.41+suhosin0.9.36 I would like to enable Suhosin's disable eval function. I went through the documentation and from what I understood, the best scenario was to add this in…
jf2000
  • 3
  • 2
0
votes
3 answers

Shell Exec disabled

I'm having a bit of a trouble with the shell exec on my server. After following some tutorials I have changed my php.ini: safe_mode Off disable_functions …
Diogo Mendonça
  • 903
  • 2
  • 12
  • 29
0
votes
1 answer

increasing post vars limit in php with suhosin is not working

I have large a form which have approx. 2000 inputs. Some inputs are mufti-dimensional array(4th Level Depth). But my server does not allow more than 1120 post Vars. I have increased following parameters of suhosin and which have been increased…
Samir Das
  • 1,878
  • 12
  • 20
0
votes
1 answer

Magento save only 325 attribute values

admin use magento administration for administrate attribute sets and their values. Our shop have more than 325 values in one or more attribute sets, but magento save only 325 values. Why? We use suhosin with this setting: # own setting for suhosin …
Ondrej
  • 1
  • 1
0
votes
2 answers

how do I fix my suhosin.so error

I'm (very) new to databases. I've designing a site, and was happy that I got a handle on the errors in my error log. Recently my error log keeps logging in "PHP Warning: ...unable to load...suhosin.so" Obviously a new entry is made whenever I…
acegreene2
  • 21
  • 1
  • 2
  • 7
0
votes
3 answers

PHP Session Lost, suhosin unchangeable

On a Ubuntu 12.04, Apache2, PHP5 server, suhosin extension is installed. (phpinfo page) This is a dedicated server with the latest security updates through automatic updates. I have created the following test script (test script without setting…
jdog
  • 2,465
  • 6
  • 40
  • 74
1 2 3
4
5