Opinions about securuty - php functions (disable)

[hardbrasil]

Our manager is suggesting to disable all this php functions, regarding to improve security,
i would like to hear your opinion about that


====================
ini_set,system,passthru,exec,popen,proc_close,proc_get_status,proc_nice,proc_open,proc_terminate,highlight_file,
scapeshellcmd,define_syslog_variables,posix_uname,posix_getpwuid,apache_child_terminate,posix_kill,posix_mkfifo,
posix_setpgid,posix_setsid,posix_setuid,escapeshellarg,posix_uname,ftp_exec,ftp_connect,ftp_login,ftp_get,ftp_put,
ftp_nb_fput,ftp_raw,ftp_rawlist,ini_alter,ini_restore,inject_code,syslog,openlog,define_syslog_variables,apache_setenv,
mysql_pconnect,eval,phpAds_XmlRpc,phpAds_remoteInfo,phpAds_xmlrpcEncode,phpAds_xmlrpcDecode,xmlrpc_entity_decode,fp,fput,
shell_exec

 

[KristianM]

Hi,

if your customers can live with all these functions disabled why not?
Improving security and disabling non required functions is always better than having them enabled.

Regards,
Kristian

 

[hardbrasil]

i dont know. i use joomla and wordpress in almost 90% of websites in there.

 

[InderS]

Yes, For the security purpose I will suggest you disable at least following function on your server.

show_source, system, shell_exec, passthru, exec, phpinfo, popen, proc_open, allow_url_fopen, ini_set