Harden PHP5 With Suhosin on Linux

From linuxpoison.blogspot.com

Suhosin is an advanced protection system for PHP installations. It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core.

Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections.

OpenSuSe user can install Suhosin using “1-click” installer – here

After successful installation check the entries in your /etc/php5/conf.d/suhosin.ini configuration file to suite your requirement.

Restart apache using following command:

# /etc/init.d/apache restart

Make sure Suhosin is working, type following command:

php -v
PHP 5.3.1 (cli) (built: Feb 15 2010 17:27:14)
Copyright (c) 1997-2009 The PHP Group
Zend Engine v2.3.0, Copyright (c) 1998-2009 Zend Technologies
with XCache v1.3.0, Copyright (c) 2005-2009, by mOo
with Suhosin v0.9.29, Copyright (c) 2007, by SektionEins GmbH

Check Suhosin project for more detail


I am a g33k, Linux blogger, developer, student and Tech Writer for Liquidweb.com/kb. My passion for all things tech drives my hunt for all the coolz. I often need a vacation after I get back from vacation....

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.