SOURCES: php-cgi.ini - options specific to cgi sapi moved here

glen glen at pld-linux.org
Wed Sep 5 18:36:11 CEST 2007 

Author: glen                         Date: Wed Sep  5 16:36:10 2007 GMT
Module: SOURCES                       Tag: HEAD
---- Log message:
- options specific to cgi sapi moved here

---- Files affected:
SOURCES:
   php-cgi.ini (1.3 -> 1.4) 

---- Diffs:

================================================================
Index: SOURCES/php-cgi.ini
diff -u SOURCES/php-cgi.ini:1.3 SOURCES/php-cgi.ini:1.4
--- SOURCES/php-cgi.ini:1.3	Sat Jan  4 21:39:42 2003
+++ SOURCES/php-cgi.ini	Wed Sep  5 18:36:05 2007
@@ -7,8 +7,39 @@
 ; and override some settings in SAPI-specific files without need of
 ; copying whole large php.ini.
 
+[PHP]
+; cgi.force_redirect is necessary to provide security running PHP as a CGI under
+; most web servers.  Left undefined, PHP turns this on by default.  You can
+; turn it off here AT YOUR OWN RISK
+; **You CAN safely turn this off for IIS, in fact, you MUST.**
+; cgi.force_redirect = 1
+
+; if cgi.nph is enabled it will force cgi to always sent Status: 200 with
+; every request.
+; cgi.nph = 1
+
+; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape
+; (iPlanet) web servers, you MAY need to set an environment variable name that PHP
+; will look for to know it is OK to continue execution.  Setting this variable MAY
+; cause security issues, KNOW WHAT YOU ARE DOING FIRST.
+; cgi.redirect_status_env = ;
+
+; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI.  PHP's
+; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok
+; what PATH_INFO is.  For more information on PATH_INFO, see the cgi specs.  Setting
+; this to 1 will cause PHP CGI to fix it's paths to conform to the spec.  A setting
+; of zero causes PHP to behave as before.  Default is 1.  You should fix your scripts
+; to use SCRIPT_FILENAME rather than PATH_TRANSLATED.
+; cgi.fix_pathinfo=0
+
+; cgi.rfc2616_headers configuration option tells PHP what type of headers to
+; use when sending HTTP response code. If it's set 0 PHP sends Status: header that
+; is supported by Apache. When this option is set to 1 PHP will send
+; RFC2616 compliant header.
+; Default is zero.
+;cgi.rfc2616_headers = 0
+
 [Session]
 session.save_path         = /tmp    ; argument passed to save_handler
                                     ; in the case of files, this is the
                                     ; path where data files are stored
-
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SOURCES/php-cgi.ini?r1=1.3&r2=1.4&f=u

More information about the pld-cvs-commit mailing list