• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

PHP Safe mode settings

I

iggy

Guest
Some sites on my server are going to have to have PHP Safe Mode disabled, while the normal default is to have safe mode on. How dow I set this up with IIS? When I was using Apache on a Linux server, I could edit the httpd.conf file and add the php_value lines that I wanted to modify the defaults that are found in the php.ini file. I don't know where the equivalent is for IIS.

Any help would be great.
 
I switched to safe mode (C:\WINDOWS\php.ini) but then horde failed..

So I just disabled some functions as in linux..(system,exec,passthru,popen,shell_exec)
 
That may be what I have to do, but I would still prefer if there was some way to have different php.ini settings on a per domain basis. I want to lock down as many domains as I can as tight as I can.
 
You can. If you look at the \vhosts\webmail\ directory you will notice a php.ini file in there. This is used for horde, although the base settings are set in main \%systemdir%\php.ini you can set settings per domain. When you do this just set the php.ini file you create to be readable, writable by admin, and psa users, not the user for the domain so they can't edit it.
 
Thanks for the input, but I found another way.

I went to Plesk support with this question as well and this is what they sent me:

Yes, you can use custom php.ini in virtual domains. I've found that it's
possible also to use registry, but we have not yet checked it.

=====================
How the registry to do per-directory settings.

HKEY_LOCAL_MACHINE\SOFTWARE\PHP\Per Directory Values

Create keys for each directory, then add the entries. So if you're
website is at c:\inetpub\vhosts\DOMAIN, under the above key, add:

HKEY_LOCAL_MACHINE\SOFTWARE\PHP\Per Directory
Values\c\inetpub\vhosts\DOMAIN\

where \c\inetpub should be replaced with directory where virtual hosts
have been installed, DOMAIN is the domain name where custom PHP settings
are required.

=====================
Click to expand...

This works. I used it to turn off safe mode for a given domain.
in HKEY_LOCAL_MACHINE\SOFTWARE\PHP\Per Directory Values\c\inetpub\vhosts\somedomain.org I added the string value safe_mode and set the value to 0. Safe mode is now off locally for that domain while still on globally, just as it would appear when changing values in httpd.conf on an Apache server.
 
You must log in or register to reply here.

Similar threads

M
Issue How to update PHP open_basedir and/or httpd.conf server wide?
Replies
9
Views
662
MHC_1
M
F
Forwarded to devs PHP: Additional directives extension handling incorrect
Replies
7
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
P
Resolved Disable output buffering
Replies
4
Views
506
Patashoow
P
L
Question PHP-FPM served by Nginx vs. Apache (again)
Replies
2
Views
590
lema
L
S
Question Server-side php components as well as plesk components
Replies
2
Views
707
sbservice.es
S
Back
Top