File tree Expand file tree Collapse file tree 1 file changed +16
-0
lines changed Expand file tree Collapse file tree 1 file changed +16
-0
lines changed Original file line number Diff line number Diff line change @@ -348,6 +348,10 @@ default_mimetype = "text/html"
348348;include_path = ".;c:\php\includes"
349349
350350; The root of the PHP pages, used only if nonempty.
351+ ; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root
352+ ; if you are running php as a CGI under any web server (other than IIS)
353+ ; see documentation for security issues. The alternate is to use the
354+ ; cgi.force_redirect configuration below
351355doc_root =
352356
353357; The directory under which PHP opens the script using /~usernamem used only
@@ -362,6 +366,18 @@ extension_dir = ./
362366; disabled on them.
363367enable_dl = On
364368
369+ ; cgi.force_redirect is necessary to provide security running PHP as a CGI under
370+ ; most web servers. Left undefined, PHP turns this on by default. You can
371+ ; turn it off here AT YOUR OWN RISK
372+ ; **You CAN safely turn this off for IIS, in fact, you MUST.**
373+ ; cgi.force_redirect = 1
374+
375+ ; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape
376+ ; (iPlanet) web servers, you MAY need to set an environment variable name that PHP
377+ ; will look for to know it is OK to continue execution. Setting this variable MAY
378+ ; cause security issues, KNOW WHAT YOU ARE DOING FIRST.
379+ ; cgi.redirect_status_env = ;
380+
365381
366382;;;;;;;;;;;;;;;;
367383; File Uploads ;
You can’t perform that action at this time.
0 commit comments