Changeset 905
- Timestamp:
- 03/02/07 12:57:16 (2 years ago)
- Files:
-
- trunk/README.txt (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
trunk/README.txt
r697 r905 76 76 PHP 77 77 === 78 For security reasons, it's very important that PHP be configured as follows:79 80 78 1. Don't display error messages to the browser. This is almost always 81 79 turned off but sometimes when you're testing you turn this on and forget 82 80 to reset it. 83 81 84 2. GLOBAL variables must be turned off. This is one of the first things 82 2. If your PHP is compiled with memory limit checks, the default is 8MB 83 which is much too small. You should increase this to at least 32MB or 64MB 84 to avoid PHP out of memory errors. Look for "memory_limit" in your php.ini 85 file. 86 87 3. GLOBAL variables must be turned off. This is one of the first things 85 88 any security aware admin will do. These days the default is for it to 86 89 be off! 87 88 3. If you want to restrict blog signups, set the restrict domain email89 setting in the admin.90 90 91 91 The easiest way of configuring it is via the .htaccess file that is … … 124 124 settings to be updated. 125 125 126 4. If you want to restrict blog signups, set the restrict domain email 127 setting in the admin. 128 126 129 127 130 UPGRADING
