iTop和Suhosin

Suhosin是一个额外的安全层,它在PHP之上应用了许多安全检查。如果您的Web服务器不是Internet上的安全,并且如果您没有公众不能将iTop计划交付给数百万的同时用户,则您可以考虑放宽Suhosin的某些限制以支持更多功能。

默认情况下,Suhosin已在某些Linux发行版(例如Debian和Ubuntu)上安装和激活。

这是已知问题和相关的Suhosin配置参数的列表:

参数价值现象建议的修复
suhosin.post.max_vars1000编辑包含300多个相关配置项的工单时,失效。一次无法删除删除超过997个对象。增加Suhosin配置中的限制
suhosin.get.max_value_length< 1024不可预测的影响。 iTop将在设置时检测到该错误。增加Suhosin配置中的限制

关于Suhosin的更多信息:http://www.hardened-php.net/

原贴链接:https://www.itophub.io/wiki/page?id=2_7_0%3Ainstall%3Asuhosin


iTop and Suhosin

Suhosin is an extra security layer which applies a number of security checks on top of PHP. If your web server is not public on the Internet and if you don't plan to deliver the iTop application to millions of simultaneaous users, you may consider relaxing a bit some of the Suhosin limits in favor of more functionalities.

Suhosin is installed and activated by default on some Linux distributions (for instance Debian & Ubuntu).

Here is a list of the known issues and the related Suhosin configuration parameter:

ParameterValueSymptomSuggested fix
suhosin.post.max_vars1000Failure when editing a ticket containing more than 300 related CIs. Could not delete/modify more than 997 objects at a time.Increase the limit in the Suhosin configuration
suhosin.get.max_value_length< 1024Unpredictable effects. iTop will detect that at the setup.Increase the limit in the Suhosin configuration

More information about Suhosin: http://www.hardened-php.net/

标签:
由 superadmin 在 2020/08/27, 15:53 创建
    

需要帮助?

如果您需要有关XWiki的帮助,可以联系:

深圳市艾拓先锋企业管理咨询有限公司