An buga wata hanya ta ketare ƙuntatawa a cikin saitin mai fassara PHP ta amfani da umarnin disable_functions da sauran saitunan php.ini. A matsayin tunatarwa, umarnin disable_functions yana ba ku damar hana amfani da wasu ayyukan ciki a cikin rubutun. Misali, zaku iya kashe "system, exec, passthru, popen, proc_open, da shell_exec" don toshe kira zuwa shirye-shiryen waje, ko fopen don hana buɗe fayiloli.
Abin lura shi ne, dabarar da aka gabatar ta yi amfani da wata matsala da aka ruwaito ga masu haɓaka PHP sama da shekaru 10 da suka gabata, amma an ɗauke ta a matsayin ƙaramar matsala ba tare da wata illa ga tsaro ba. Hanyar da aka gabatar ta hanyar kai hari ta dogara ne akan gyara ƙimar sigogi a cikin ƙwaƙwalwar tsari kuma tana aiki a cikin duk fitowar PHP na yanzu, farawa da PHP 7.0 (harin kuma yana yiwuwa akan PHP 5.x, amma yana buƙatar gyare-gyare ga amfani). An gwada amfani da ita a cikin tsare-tsare daban-daban. Debian, Ubuntu, CentOS da kuma FreeBSD tare da PHP a cikin nau'in cli, fpm da kuma module na apache2.
source: budenet.ru
