php - Allowing 1 Directory on a Webserver to be accessed for Includes by others -


the circumstances this, have hosting package website, doesn't allow me access php.ini or httpd.conf. have taken on various clients, want keep current hosting packages.

what want allow access directory on particular path, in domain, can keep php includes in. can share across various clients sites, don't have access sites , update files.

a friend of mine mentioned curl , fopen add lag. possible use, , know little them, .htaccess document open directory read access include requests other web servers. want keep webspace secure possible. advice , please.

remember accessing includes via curl/fopen using urls mean you're accessing php includes if regular php scripts. unless configure server serve .php files plain text in particular directly, include scripts executed, , output.

e.g.

include.php on centralized "include" server

<?php  function foo() {     echo 'hello foo'; }

some script on client site:

<?php include('http://includes.example.com/inculde.php');

will include nothing. include.php script producing no output. not foo() function available in client site, because no php code returned remote site.

on other hand, if had this:

<?php echo '<' . '?php'; ?>                 function foo() {   echo 'foo'; }

then plaintext happens php code, , include work expected.

however, should not using include() remote files. opens whole can of attack vectors malicious user. perhaps have dns glitch, , attack can remap ip of include.example.com, client sites loading code server under control, , of clients compromised.

perhaps there's network glitch , whatever reason central include server not reachable client machine's - site dead in water because server isn't available.

basically, you're introducing single point of failure system, failure take out of clients @ same time. not system, @ all.


Comments

Post a Comment

Popular posts from this blog

linux - xterm copying to CLIPBOARD using copy-selection causes automatic updating of CLIPBOARD upon mouse selection -

i've tried various ways coerce xterm (versions 285 , 292) copy selection clipboard clipboard whenever press ctrl-shift-c. promising way far has been, in ~/.xresources, put this: xterm*vt100.translations: #override \ ctrl shift <keypress> c: copy-selection(clipboard) \n\ ctrl shift <keypress> v: insert-selection(clipboard) ctrl-shift-v works perfectly, copying has nuance... if restart xterm, highlighting text puts things in primary clipboard; expected, proper, default behavior. if hit ctrl-shift-c, copies current selection clipboard clipboard. the bug, however, if highlight text after first time pressed ctrl-shift-c, you'll see highlighting copies both primary and clipboard. cannot figure out how stop xterm updating clipboard upon selection... , doesn't make sense me in first place. i said, @ specific point in time, copy selection clipboard... yet starts updating automatically upon selection after doing once... anyone have workaround...
Read more

c++ - qgraphicsview horizontal scrolling always has a vertical delta -

Image
i've subclassed qgraphicsview custom canvas used in cad application. i've reimplemented qgraphicsview::wheelevent check keyboard modifiers control key and, if control key pressed, zoom. i'm trying implement horizontal scroll when user holds shift , uses wheel. the problem i'm having horizontal scrolling always scrolls 0.279. not huge problem, hugely annoying , points else being wrong. so, here questions: is right way implement horizontal scrolling? if not, is? how eliminate delta of 0.279? thanks in advance. code , sample output below void myview::zoom(int delta) { double factor = pow(1.2, delta/abs(delta)); this->scale(factor, factor); } void myview::scrollhorizontal(int level) { qpointf center = maptoscene(viewport()->rect().center()); qdebug() << "center: " << center.x() << ", " << center.y(); centeron(qpointf(center.x() - level, center.y())); } void myview::wheelevent(qwheeleve...
Read more