;;;;;;;;;;;;;;;;;;;
; Resource restrictions;
;;;;;;;;;;;;;;;;;;;
; Maximum number of seconds for each script to be executed
Max_execution_time = 30
; The maximum time for each script to analyze the request data
Max_input_time = 60
; Maximum input variable nesting level
; Max_input_nesting_level = 64
; Maximum memory size per script (128 MB)
Memory_limit = 128 m
;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
; Error handling and recording;
;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
An error report is a single digit. Obtain or obtain the final report level for each value.
; E_all-all errors and warnings (excluding e_strict)
; E_error-fatal runtime error
; E_recoverable_error-almost fatal runtime error
; E_warning-runtime warning (non-fatal error)
; E_parse-syntax error during compilation
; E_notice-runtime reminder (these warnings are often caused by bugs in your code, but may also be intentional behaviors (for example, use an uninitialized variable and rely on the fact that it will be automatically initialized to an empty string)
; E_strict-runtime reminder. php will give suggestions on the ease of code migration and the best backward compatibility for your code.
; E_core_error-fatal error during PHP initialization startup
; E_core_warning-warning (non-fatal error) during PHP Initialization)
; E_compile_error-fatal compile-time error
; E_compile_warning-warning during compilation (non-fatal)
; E_user_error-error message generated by the user
; E_user_warning-user-generated warning information
; E_user_notice-user-generated prompt information
;
; Example:
;
;-All errors are displayed, except prompts and standard code warnings.
;
; Error_reporting = e_all &~ E_notice
;
;-All errors are displayed, except for the prompt
;
; Error_reporting = e_all &~ E_notice | e_strict
;
;-Only show errors
;
; Error_reporting = e_compile_error | e_recoverable_error | e_error | e_core_error
;
;-An error message is displayed, which is not included in the code standard warning.
;
Error_reporting = e_all &~ E_notice
; Print output error (as part of the output). For websites in the production environment,
It is strongly recommended that you disable this option and use error logs instead (For details, refer to the following content ).
When display_errors is opened on a web site in a production environment, security information may be leaked to end users, such as the file path of the web server, the structure of your database, or other information.
;
; Display_errors available values:
;
; Off-no error message is displayed
; Stderr-output error messages to stderr (only valid in CGI/CLI format !)
;
; Display_errors = "stderr"
;
; Stdout (on)-output error message to stdout
;
Display_errors = on
Even if display_errors is enabled, errors in the PHP startup sequence are not displayed.
It is strongly recommended that you keep display_startup_errors off, unless in the troubleshooting
Display_startup_errors = off
; Input the error to the log file (log, stderr, or error_log specified by the server (specified below ))
As mentioned above, we strongly recommend that you use error logs in the production environment's Web site instead of error display.
Log_errors = off
Set the maximum length of log_errors, which is included in error_log information about the source.
The default value is 1024. If it is set to 0, the maximum length is not limited.
Log_errors_max_len = 1024
Do not record duplicate information. duplicate information is considered only when it appears in the same row of the same file, unless ignore_repeated_source is set to true.
Ignore_repeated_errors = off
The source of the message is ignored when duplicate messages are ignored. When this setting is enabled, the same message from different files or lines is no longer recorded.
Ignore_repeated_source = off
If this option is set to off, the memory leakage will not be displayed (whether in stdout or log ).
; This option is only valid in debug compiling mode, and the error report must contain e_warning
Report_memleaks = on
; Report_zend_debug = 0
; Save the last error/warning message (logical value) in $ php_errormsg ).
Track_errors = off
Disable HTML tags contained in the error message.
Note: never use this feature in the reproduction environment.
; Html_errors = off
If html_errors is set to on, PHP will generate clickable error information. After clicking it, the page will jump to the specific information about the function that describes this error or causes this error.
; You can download a copy of the PHP manual from the http://www.php.net/docs.php
And point docref_root to the local copy starting.
At the same time, you must specify the file's inclusion point extension.
Note: never use this feature in the reproduction environment.
; Docref_root = "/phpmanual /"
; Docref_ext =. html
The string added before the output error message.
; Error_prepend_string = "<font color = # ff0000>"
The string added after the output error message.
; Error_append_string = "</font>"
; Records errors to the specified file.
; Error_log = filename
; Record the error to syslog (Event Log On the NT System is unavailable under Windows 95 ).
; Error_log = Syslog
;;;;;;;;;;;;;;;;;
; File processing;
;;;;;;;;;;;;;;;;;
;
Note:-track_vars is always enabled in PHP 4.0.3.
In the URL generated by PHP, it is used to separate the parameters.
; The default value is "&".
; Arg_separator.output = "& amp ;"
PHP is used to split the URL into separators in the variable.
; The default value is "&".
Note: All characters contained in the command are considered as delimiters!
; Arg_separator.input = ";&"
This command describes the order in which PHP registers get, post, Cookie, environment, and built-in variables (g, P, C, E, and s are used respectively, and egpcs or GPC are generally used ). register and use the order from left to right. The new value will overwrite the old value.
Variables_order = "egpcs"
Whether to register the egpcs variable as a global variable.
If you do not want the global variables of your script to become messy due to user data, you need to disable this option.
This is generally enabled with track_vars-in this case, you can access all GPC variables through $ HTTP _ * _ vars.
;
; You should try to write the script so that you do not have to open register_globals
If the code is not carefully considered, using variables as a global user may easily lead to potential security vulnerabilities.
Register_globals = off
; Whether to register the old input array, http_get_vars and related Arrays
If you do not use them, we recommend that you disable them to improve performance.
Register_long_arrays = on
This command allows PHP to determine whether to declare argv & argc variables (these variables will contain get information ).
If you do not use these variables, disable this option to improve performance.
Register_argc_argv = on
When this option is enabled, the server and env variables will be created at the first time when they are used, instead of at the beginning of the script (runtime)
If these variables are not used in the script, enabling this option will increase the performance.
To make this command valid, the php Command register_globals, register_long_arrays,
; And register_argc_argv must be disabled.
Auto_globals_jit = on
The maximum size of post data that PHP can accept.
Post_max_size = 8 m
; Magic quotes
;
Open magic quotes for get/post/cookie data.
Magic_quotes_gpc = on
Open magic quotes for real-time data, such as data obtained from SQL and data returned from exec.
Magic_quotes_runtime = off
; Use the Sybase-style magic quotes (use "to guide 'substitution /').
Magic_quotes_sybase = off
Automatically add files before or after any PHP documents.
Auto_prepend_file =
Auto_append_file =
Like 4.0b4, PHP always uses the default Content-Type: encoding output character in the header.
Set it to null to disable the sending character set.
;
PHP built-in default value: text/html
Default_mimetype = "text/html"
; Default_charset = "iso-8859-1"
; Always fill in the $ http_raw_post_data variable.
; Always_populate_raw_post_data = on
;;;;;;;;;;;;;;;;;;;;;;;;;
; Path and directory;
;;;;;;;;;;;;;;;;;;;;;;;;;
; Unix: "/path1:/path2"
; Include_path = ".:/PHP/shortdes"
;
; Windows: "/path1;/path2"
; Include_path = ".; C:/PHP/shortdes"
; PHP page root path, valid only when not empty.
If php does not use force_redirect for compilation, if you run php as CGI on any web server (except IIS), you must set doc_root
For security issues, see the document. An alternative is to use the following CGI. force_redirect
Doc_root =
PHP usage /~ Username is valid only when the script directory is opened.
User_dir =
; Directory location of the Extensible (module) that can be loaded.
Extension_dir = "./"
; Whether to enable the DL () function. DL () function to run normally in multi-threaded services, such as IIS or Zeus, and will be automatically disabled under these service software.
Enable_dl = on
In most web servers, CGI. force_redirect is necessary for providing safe execution of PHP as CGI.
If no configuration is available, PHP will enable this option by default.
You can disable this item here and take risks on your own.
; ** You can disable this option in IIS security. In fact, you must disable this option .**
; CGI. force_redirect = 1
If CGI. nph is enabled, it will force CGI to send status: 200 at each request.
; CGI. nph = 1
If CGI. force_redirect is enabled and you have not run it on Apache or Netscape (iPlanet) web server,
You may need to set an environment variable name for PHP to search for the variable so that it can be obtained and then run. setting this variable may cause security problems. Before setting this variable, please first understand the possible consequences.
; CGI. redirect_status_env =;
CGI. fix_pathinfo provides * true * path_info/path_translated support for CGI.
PHP's preprocessing behavior is to set path_translated to script_filename, and do not guess what path_info is.
For more information about path_info, see CGI specifications.
Setting this value to 1 will cause php cgi to correct its path to conform to the specification.
Setting 0 will cause PHP to behave like the previous one. The default value is 1. You should correct your script to use script_filename instead of path_translated.
; CGI. fix_pathinfo = 0
FastCGI in IIS (in the winnt-based operating system) supports the Security token of the call client.
This allows IIS to define the security context under which it runs.
; Mod_fastcgi in Apache does not currently support this feature (03/17/2002)
If it is set to 1 when running in IIS, the default value is 0.
; FastCGI. Impersonate = 1;
; Disable logs connected through FastCGI
; FastCGI. Logging = 0
The CGI. rfc2616_headers configuration option informs PHP of the type of header used when sending the HTTP response code.
If it is set to 0, PHP sends status: header information supported by Apache.
When set to 1, PHP will send rfc2616 compatible header information.
The default value is 0.
; CGI. rfc2616_headers = 0
;;;;;;;;;;;;;;;;
; File Upload;
;;;;;;;;;;;;;;;;
; Whether to allow HTTP File Upload.
File_uploads = on
; For the temporary file directory of the HTTP Upload File (if not specified, the system default will be used ).
; Upload_tmp_dir =
; Maximum file size that can be uploaded.
Upload_max_filesize = 2 m
;;;;;;;;;;;;;;;;;;
; Fopen packaging;
;;;;;;;;;;;;;;;;;;
; Whether to use the URL as a file (such as http: // or FTP ://).
Allow_url_fopen = on
; Whether to allow include/require to use the URL as a file (for example, http: // or FTP ://).
Allow_url_include = off
Define an anonymous FTP password (your email address)
; From = "john@doe.com"
Define the User-Agent string
; User_agent = "php"
; Defines the timeout time (in seconds) of the stream-based socket interface)
Default_socket_timeout = 60
If your script must process files from the Macintosh system,
Or you are running on a Mac and need to process files from Unix or Win32 systems,
Setting this flag will cause PHP to automatically detect the EOL characters of these files, so that fgets () and file () can be processed directly without having to worry about the file source.
; Auto_detect_line_endings = off