PHP Tutorials

Php What is
Php Syntax
Php Comments
Php Booleans
Php Integers
Php Floating point numbers
Php Strings
Php Variable
Php Identifiers
Php Constants
Php Expressions
Php Operator
Php Control structure
Php Array
Php Functions
Php Null
Php Include
Php Include once
Php Require
Php Require once
Php Predefined Variables
Php Predefined Functions

PHP INI Tutorials

Php ini What is
Php ini Language Options
Php ini Safe Mode
Php ini Miscellaneous
Php ini Resource limits
Php ini Error reporting
Php ini Display errors
Php ini Data Handling
Php ini Magic quotes
Php ini Path and Directorie
Php ini File Uploads
Php ini Fopen wrappers
Php ini Dynamic Extensions
 PHP Ini Miscellaneous List

php ini expose_php

Each scrap of information that a potential attacker can gather about a Web server increases the chances that he will successfully compromise it. One simple way to obtain key information about server characteristics is via the server signature.

For example, Apache will broadcast the following information within each response header by default:

Apache/2.2.0 (Unix) PHP/6.0.0 PHP/6.0.0-dev Server at www.example.com Port 80

Disabling expose_php prevents the Web server signature (if enabled) from broadcasting the fact that PHP is installed. Although you need to take other steps to ensure sufficient server protection, obscuring server properties such as this one is nonetheless heartily recommended.

expose_php = On

Note : You can disable Apache's broadcast of its server signature by setting ServerSignature to Off in the httpd.conf file.

 PHP Ini Miscellaneous List




Content