├── .gitignore ├── rootfs ├── etc │ ├── cron.d │ │ └── .gitkeep │ ├── php │ │ ├── mods-available │ │ │ ├── disabled │ │ │ │ └── .gitkeep │ │ │ ├── 40-apcu.ini │ │ │ ├── 50-redis.ini │ │ │ ├── xs_memory_limit.ini │ │ │ ├── xs_timezone.ini │ │ │ ├── 50-memcached.ini │ │ │ ├── xs_max_time.ini │ │ │ ├── xs_max_upload_size.ini │ │ │ ├── 40-imagick.ini │ │ │ ├── curl.ini │ │ │ ├── imap.ini │ │ │ ├── intl.ini │ │ │ ├── json.ini │ │ │ ├── 30-igbinary.ini │ │ │ ├── mysqli.ini │ │ │ ├── 40-msgpack.ini │ │ │ ├── pdo_mysql.ini │ │ │ ├── xs_pcre.ini │ │ │ ├── xs_mysqlnd.ini │ │ │ ├── xs_igbinary.ini │ │ │ ├── xs_zzz.ini │ │ │ └── xs_opcache.ini │ │ └── litespeed │ │ │ └── php.ini │ ├── cron.hourly │ │ └── vhost-autoupdate │ └── services.d │ │ └── tail-log-php-error │ │ └── run ├── root │ └── .bash_aliases ├── xshok-vhost-autoupdate.sh └── xshok-init.sh ├── docker-compose-sample.yml ├── Dockerfile └── README.md /.gitignore: -------------------------------------------------------------------------------- 1 | dev/* 2 | -------------------------------------------------------------------------------- /rootfs/etc/cron.d/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/disabled/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/40-apcu.ini: -------------------------------------------------------------------------------- 1 | extension=apcu.so 2 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/50-redis.ini: -------------------------------------------------------------------------------- 1 | extension=redis.so 2 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/xs_memory_limit.ini: -------------------------------------------------------------------------------- 1 | memory_limit = 256M 2 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/xs_timezone.ini: -------------------------------------------------------------------------------- 1 | date.timezone = UTC 2 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/50-memcached.ini: -------------------------------------------------------------------------------- 1 | ; priority=25 2 | extension=memcached.so 3 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/xs_max_time.ini: -------------------------------------------------------------------------------- 1 | max_execution_time = 300 2 | max_input_time = 180 3 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/xs_max_upload_size.ini: -------------------------------------------------------------------------------- 1 | upload_max_filesize = 32M 2 | post_max_size = 32M 3 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/40-imagick.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php imagick module 2 | extension=imagick.so 3 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/curl.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php curl module 2 | ; priority=20 3 | extension=curl.so 4 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/imap.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php imap module 2 | ; priority=20 3 | extension=imap.so 4 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/intl.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php intl module 2 | ; priority=20 3 | extension=intl.so 4 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/json.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php json module 2 | ; priority=20 3 | extension=json.so 4 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/30-igbinary.ini: -------------------------------------------------------------------------------- 1 | ; priority=20 2 | ; Load igbinary extension 3 | extension=igbinary.so 4 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/mysqli.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php mysql module 2 | ; priority=20 3 | extension=mysqli.so 4 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/40-msgpack.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php msgpack module 2 | ; priority=20 3 | extension=msgpack.so 4 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/pdo_mysql.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php mysql module 2 | ; priority=20 3 | extension=pdo_mysql.so 4 | -------------------------------------------------------------------------------- /rootfs/root/.bash_aliases: -------------------------------------------------------------------------------- 1 | # run wp-cli as nobody user with the command wp 2 | alias wp="sudo -u nobody /usr/local/bin/wp-cli" 3 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/xs_pcre.ini: -------------------------------------------------------------------------------- 1 | [Pcre] 2 | pcre.jit=1 3 | pcre.backtrack_limit 10000000 4 | pcre.recursion_limit=1000000 5 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/xs_mysqlnd.ini: -------------------------------------------------------------------------------- 1 | mysqlnd.net_cmd_buffer_size = 16384 2 | mysqlnd.collect_memory_statistics = Off 3 | mysqlnd.collect_statistics = off 4 | mysqlnd.mempool_default_size = 16000 5 | -------------------------------------------------------------------------------- /rootfs/etc/cron.hourly/vhost-autoupdate: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | 3 | while ! /usr/local/lsws/bin/lswsctrl status | grep -q "litespeed is running with PID" ; do 4 | echo "Waiting for OpenLiteSpeed to start" 5 | sleep 10s 6 | done 7 | 8 | if [ -f /xshok-vhost-autoupdate.sh ] ; then 9 | echo $(date) >> /tmp/autoupdate 10 | bash /xshok-vhost-autoupdate.sh >> /tmp/autoupdate 11 | fi 12 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/xs_igbinary.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php igbinary module 2 | 3 | ; Enable or disable compacting of duplicate strings, default is On. 4 | igbinary.compact_strings=On 5 | 6 | ; Use igbinary as session serializer 7 | session.serialize_handler=igbinary 8 | 9 | ; Use igbinary as serializer of APC cache 10 | apc.serializer=igbinary 11 | 12 | ; Use igbinary as serializer of memcached 13 | memcached.serializer=igbinary 14 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/xs_zzz.ini: -------------------------------------------------------------------------------- 1 | 2 | always_populate_raw_post_data = -1 3 | 4 | expose_php = Off 5 | 6 | file_uploads = On 7 | 8 | mail.add_x_header = Off 9 | 10 | max_input_nesting_level = 128 11 | max_input_vars = 10000 12 | 13 | realpath_cache_size = 1536k 14 | 15 | realpath_cache_ttl = 28800 16 | 17 | short_open_tag = On 18 | 19 | display_errors = On 20 | 21 | error_reporting = E_ALL & ~E_WARNING & ~E_NOTICE & ~E_STRICT & ~E_DEPRECATED 22 | -------------------------------------------------------------------------------- /rootfs/etc/services.d/tail-log-php-error/run: -------------------------------------------------------------------------------- 1 | #!/usr/bin/with-contenv bash 2 | ################################################################################ 3 | # This is property of eXtremeSHOK.com 4 | # You are free to use, modify and distribute, however you may not remove this notice. 5 | # Copyright (c) Adrian Jon Kriel :: admin@extremeshok.com 6 | ################################################################################ 7 | # 8 | # openlitespeed is unable to directly log to /dev/stdout , so we need to tail the log directly 9 | # 10 | # find a solution to tail as nobody 11 | #exec s6-setuidgid nobody touch /usr/local/lsws/logs/php_error.log && echo "php_error.log" >> /usr/local/lsws/logs/php_error.log && tail -F -n 0 /usr/local/lsws/logs/php_error.log 12 | 13 | while true ; do 14 | echo "Monitoring php_error.log" >> /usr/local/lsws/logs/php_error.log && tail -F -n 1 /usr/local/lsws/logs/php_error.log 15 | done 16 | -------------------------------------------------------------------------------- /rootfs/etc/php/mods-available/xs_opcache.ini: -------------------------------------------------------------------------------- 1 | ; configuration for php opcache module 2 | ; priority=10 3 | zend_extension=opcache.so 4 | ;opcache.error_log = /var/log/php_opcache_error.log 5 | opcache.enable = 1 6 | opcache.memory_consumption = 512 7 | opcache.interned_strings_buffer = 64 8 | opcache.max_wasted_percentage = 15 9 | opcache.max_accelerated_files = 130986 10 | ; http://php.net/manual/en/opcache.configuration.php#ini.opcache.revalidate-freq 11 | ; defaults to zend opcache checking every 180 seconds for PHP file changes 12 | ; set to zero to check every second if you are doing alot of frequent 13 | ; php file edits/developer work 14 | ; opcache.revalidate_freq = 0 15 | opcache.revalidate_freq = 180 16 | opcache.max_file_size=0 17 | opcache.fast_shutdown = 0 18 | opcache.enable_cli = 0 19 | opcache.save_comments = 0 20 | opcache.enable_file_override = 1 21 | opcache.revalidate_path = 0 22 | opcache.validate_timestamps = 1 23 | opcache.huge_code_pages = 1 24 | opcache.log_verbosity_level=1 25 | opcache.use_cwd=1 26 | ; Enables opcode caching in shared memory. 27 | opcache.file_cache = /var/www/vhosts/.opcache 28 | ; keep disabled, crashes litespeed when enabled 29 | opcache.file_cache_only=0 30 | -------------------------------------------------------------------------------- /docker-compose-sample.yml: -------------------------------------------------------------------------------- 1 | version: '3.0' 2 | ########## SERVICES ######## 3 | services: 4 | ###### xshok-openlitespeed-php 5 | openlitespeed: 6 | image: extremeshok/openlitespeed-php:latest 7 | shm_size: 128M 8 | depends_on: 9 | - redis 10 | - mysql 11 | volumes: 12 | # volume mounts 13 | - vol-www-vhosts:/var/www/vhosts/:rw 14 | - vol-www-configs:/etc/openlitespeed/:rw 15 | - vol-www-logs:/usr/local/lsws/logs/:rw 16 | environment: 17 | #optional enviromental varibles 18 | - TZ=${TZ} 19 | - VHOST_CRON=true 20 | - VHOST_MONITOR_CERTS=true 21 | - VHOST_FIX_PERMISSIONS=true 22 | - VHOST_FIX_PERMISSIONS_FOLDERS=true 23 | - VHOST_FIX_PERMISSIONS_FILES=true 24 | - VHOST_FIX_PERMISSIONS_FOLDERS_FORCE=false 25 | - VHOST_FIX_PERMISSIONS_FILES_FORCE=false 26 | - VHOST_FIX_PERMISSIONS_FOLDERS_INTERVAL_DAYS=7 27 | - VHOST_FIX_PERMISSIONS_FILE_INTERVAL_DAYS=7 28 | - VHOST_AUTOUPDATE=true 29 | - VHOST_AUTOUPDATE_WP=true 30 | - VHOST_AUTOUPDATE_DEBUG=false 31 | - PHP_TIMEZONE=${TZ} 32 | - PHP_REDIS_SESSIONS=yes 33 | - PHP_REDIS_HOST=redis 34 | - PHP_REDIS_PORT=6379 35 | - PHP_MAX_UPLOAD_SIZE=32 36 | - PHP_MAX_TIME=300 37 | - PHP_MEMORY_LIMIT=256 38 | - PHP_DISABLE_FUNCTIONS=shell_exe 39 | - PHP_SMTP_HOST=mail.yoursmtp.com 40 | - PHP_SMTP_PORT=587 41 | - PHP_SMTP_USER=mail@yoursmtp.com 42 | - PHP_SMTP_PASS=securpassword 43 | restart: always 44 | sysctls: 45 | - net.ipv6.conf.all.disable_ipv6=${SYSCTL_IPV6_DISABLED:-0} 46 | dns: 47 | - ${IPV4_NETWORK:-172.22.1}.254 48 | networks: 49 | network: 50 | aliases: 51 | - webserver 52 | -------------------------------------------------------------------------------- /Dockerfile: -------------------------------------------------------------------------------- 1 | FROM extremeshok/openlitespeed:latest AS BUILD 2 | LABEL mantainer="Adrian Kriel " vendor="eXtremeSHOK.com" 3 | ################################################################################ 4 | # This is property of eXtremeSHOK.com 5 | # You are free to use, modify and distribute, however you may not remove this notice. 6 | # Copyright (c) Adrian Jon Kriel :: admin@extremeshok.com 7 | ################################################################################ 8 | 9 | USER root 10 | 11 | ARG DEBIAN_FRONTEND=noninteractive 12 | 13 | RUN echo "**** Install packages ****" \ 14 | && apt-install \ 15 | fontconfig \ 16 | mariadb-client \ 17 | msmtp \ 18 | sudo \ 19 | vim-tiny 20 | 21 | RUN echo "**** Install PHP7.4 ****" \ 22 | && apt-install \ 23 | lsphp74-apcu \ 24 | lsphp74-common \ 25 | lsphp74-curl \ 26 | lsphp74-dev \ 27 | lsphp74-igbinary \ 28 | lsphp74-imagick \ 29 | lsphp74-imap \ 30 | lsphp74-intl \ 31 | lsphp74-json \ 32 | lsphp74-ldap- \ 33 | lsphp74-memcached \ 34 | lsphp74-modules-source- \ 35 | lsphp74-msgpack \ 36 | lsphp74-mysql \ 37 | lsphp74-opcache \ 38 | lsphp74-pear \ 39 | lsphp74-pgsql- \ 40 | lsphp74-pspell- \ 41 | lsphp74-redis \ 42 | lsphp74-snmp- \ 43 | lsphp74-sqlite3 \ 44 | lsphp74-sybase- \ 45 | lsphp74-tidy- 46 | ## not available for php7.4 47 | # lsphp74-ioncube 48 | 49 | RUN echo "**** Default to PHP7.4 and create symbolic links ****" \ 50 | && rm -f /usr/bin/php \ 51 | && rm -f /usr/local/lsws/fcgi-bin/lsphp \ 52 | && ln -s /usr/local/lsws/lsphp74/bin/php /usr/bin/php \ 53 | && ln -s /usr/local/lsws/lsphp74/bin/lsphp /usr/local/lsws/fcgi-bin/lsphp 54 | 55 | RUN echo "**** Create symbolic links for /etc/php ****" \ 56 | && rm -rf /etc/php \ 57 | && mkdir -p /etc/php \ 58 | && rm -rf /usr/local/lsws/lsphp74/etc/php/7.4 \ 59 | && mkdir -p /usr/local/lsws/lsphp74/etc/php/7.4 \ 60 | && ln -s /etc/php/litespeed /usr/local/lsws/lsphp74/etc/php/7.4/litespeed \ 61 | && ln -s /etc/php/mods-available /usr/local/lsws/lsphp74/etc/php/7.4/mods-available 62 | 63 | RUN echo "**** Fix permissions ****" \ 64 | && chown -R lsadm:lsadm /usr/local/lsws 65 | 66 | RUN echo "**** Create error.log for php ****" \ 67 | && touch /usr/local/lsws/logs/php_error.log \ 68 | && chown nobody:nogroup /usr/local/lsws/logs/php_error.log 69 | 70 | COPY rootfs/ / 71 | 72 | RUN echo "**** Test PHP has no warnings ****" \ 73 | && if /usr/local/lsws/lsphp74/bin/php -v | grep -q -i warning ; then /usr/local/lsws/lsphp74/bin/php -v ; exit 1 ; fi 74 | 75 | RUN echo "**** Test PHP has no errors ****" \ 76 | && if /usr/local/lsws/lsphp74/bin/php -v | grep -q -i error ; then /usr/local/lsws/lsphp74/bin/php -v ; exit 1 ; fi 77 | 78 | RUN echo "*** Backup PHP Configs ***" \ 79 | && mkdir -p /usr/local/lsws/default/php \ 80 | && cp -rf /usr/local/lsws/lsphp74/etc/php/7.4/* /usr/local/lsws/default/php 81 | 82 | #When using Composer, disable the warning about running commands as root/super user 83 | ENV COMPOSER_ALLOW_SUPERUSER=1 84 | 85 | RUN echo "**** Install Composer ****" \ 86 | && php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');" \ 87 | && php composer-setup.php \ 88 | && mv composer.phar /usr/local/bin/composer \ 89 | && php -r "unlink('composer-setup.php');" 90 | 91 | RUN echo "**** Install PHPUnit ****" \ 92 | && wget -q https://phar.phpunit.de/phpunit.phar \ 93 | && mv phpunit.phar /usr/local/bin/phpunit \ 94 | && chmod +x /usr/local/bin/phpunit 95 | 96 | RUN echo "**** Install WP-CLI ****" \ 97 | && wget -q https://raw.githubusercontent.com/wp-cli/builds/gh-pages/phar/wp-cli.phar \ 98 | && mv wp-cli.phar /usr/local/bin/wp-cli \ 99 | && chmod +x /usr/local/bin/wp-cli \ 100 | && mkdir -p /nonexistent/.wp-cli/cache \ 101 | && chown -R nobody:nogroup /nonexistent/.wp-cli 102 | 103 | RUN echo "**** Ensure there is no admin password ****" \ 104 | && rm -f /etc/openlitespeed/admin/htpasswd 105 | 106 | RUN echo "**** Correct permissions ****" \ 107 | && chmod 0644 /etc/cron.hourly/vhost-autoupdate \ 108 | && chmod 755 /etc/services.d/*/run \ 109 | && chmod 755 /etc/services.d/*/finish \ 110 | && chmod 755 /xshok-*.sh 111 | 112 | WORKDIR /var/www/vhosts/localhost/ 113 | 114 | EXPOSE 80 443 443/udp 7080 8088 115 | 116 | # "when the SIGTERM signal is sent, it immediately quits and all established connections are closed" 117 | # "graceful stop is triggered when the SIGUSR1 signal is sent " 118 | STOPSIGNAL SIGUSR1 119 | 120 | HEALTHCHECK --interval=5s --timeout=5s CMD [ "301" = "$(curl -s -o /dev/null -w "%{http_code}" http://127.0.0.1:7080/)" ] || exit 1 121 | 122 | ENTRYPOINT ["/init"] 123 | -------------------------------------------------------------------------------- /rootfs/xshok-vhost-autoupdate.sh: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | ################################################################################ 3 | # This is property of eXtremeSHOK.com 4 | # You are free to use, modify and distribute, however you may not remove this notice. 5 | # Copyright (c) Adrian Jon Kriel :: admin@extremeshok.com 6 | ################################################################################ 7 | # 8 | # searches for wordpress installs and does updates (plugins, themes, core, core-db, wordpress, woocommerce) 9 | # 10 | # caches are flushed if there was an update (rewrites, transient, cache, lscache) 11 | # 12 | # Set VHOST_AUTOUPDATE_WP to "no" to disable 13 | # Set VHOST_AUTOUPDATE_DEBUG to "yes" to enable debug output of the wp-cli commands 14 | # 15 | ################################################################################# 16 | 17 | ## enable case insensitve matching 18 | shopt -s nocaseglob 19 | 20 | XS_VHOST_DIR=${VHOST_DIR:-/var/www/vhosts} 21 | 22 | ################# ECC 23 | XS_VHOST_AUTOUPDATE=${VHOST_AUTOUPDATE:-yes} 24 | XS_VHOST_AUTOUPDATE_WP=${VHOST_AUTOUPDATE_WP:-yes} 25 | XS_VHOST_AUTOUPDATE_DEBUG=${VHOST_AUTOUPDATE_DEBUG:-no} 26 | 27 | if [ "${XS_VHOST_AUTOUPDATE_DEBUG,,}" == "yes" ] || [ "${XS_VHOST_AUTOUPDATE_DEBUG,,}" == "true" ] || [ "${XS_VHOST_AUTOUPDATE_DEBUG,,}" == "on" ] || [ "${XS_VHOST_AUTOUPDATE_DEBUG,,}" == "1" ] ; then 28 | XS_VHOST_AUTOUPDATE_DEBUG=true 29 | else 30 | XS_VHOST_AUTOUPDATE_DEBUG=false 31 | fi 32 | 33 | ################# MAIN 34 | if [ "${XS_VHOST_AUTOUPDATE,,}" == "yes" ] || [ "${XS_VHOST_AUTOUPDATE,,}" == "true" ] || [ "${XS_VHOST_AUTOUPDATE,,}" == "on" ] || [ "${XS_VHOST_AUTOUPDATE,,}" == "1" ] ; then 35 | vhost_dir="$(realpath -s "${XS_VHOST_DIR}")" 36 | if [ -d "${vhost_dir}" ] ; then 37 | ################# WP : BEGIN 38 | if [ "${XS_VHOST_AUTOUPDATE_WP,,}" == "yes" ] || [ "${XS_VHOST_AUTOUPDATE_WP,,}" == "true" ] || [ "${XS_VHOST_AUTOUPDATE_WP,,}" == "on" ] || [ "${XS_VHOST_AUTOUPDATE_WP,,}" == "1" ] ; then 39 | while IFS= read -r wp_path ; do 40 | updated="" 41 | echo "Processing: ${wp_path}" 42 | if [ ! -f "${wp_path}/autoupdate.disable" ] ; then 43 | # path contains /html , remeber files are always located under vhost/html 44 | if sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" core is-installed ; then 45 | echo "- Valid wordpress install" 46 | 47 | echo "-- plugin" 48 | result=$(sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" plugin update --all 2>&1) 49 | result_short=${result##*$'\n'} 50 | if [[ "${result_short,,}" != *"no plugins updated"* ]] && [[ "${result_short,,}" != *"already updated"* ]] ; then 51 | echo "PLUGIN/s UPDATED" 52 | updated="plugin" 53 | if [ $XS_VHOST_AUTOUPDATE_DEBUG ] ; then echo "$result" ; fi 54 | fi 55 | 56 | echo "-- theme" 57 | result=$(sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" theme update --all 2>&1) 58 | result_short=${result##*$'\n'} 59 | if [[ "${result_short,,}" != *"no themes updated"* ]] && [[ "${result_short,,}" != *"already updated"* ]] ; then 60 | echo "THEME UPDATED!!" 61 | updated="theme" 62 | if [ $XS_VHOST_AUTOUPDATE_DEBUG ] ; then echo "$result" ; fi 63 | fi 64 | 65 | echo "-- core & core-db" 66 | result=$(sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" core update 2>&1 ) 67 | result_short=${result##*$'\n'} 68 | if [[ "${result_short,,}" != *"wordpress is up to date"* ]] ; then 69 | result_two=$(sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" core update-db 2>&1) 70 | echo "CORE UPDATED!!" 71 | updated="core" 72 | if [ $XS_VHOST_AUTOUPDATE_DEBUG ] ; then echo "$result" ; fi 73 | if [ $XS_VHOST_AUTOUPDATE_DEBUG ] ; then echo "$result_two" ; fi 74 | fi 75 | 76 | echo "-- woocommerce" 77 | result=$(sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" wc update 2>&1) 78 | result_short=${result##*$'\n'} 79 | if [[ "${result_short,,}" != *"no updates required"* ]] && [[ "${result_short,,}" != *"did you mean"* ]] && [[ "${result_short,,}" != *"already updated"* ]] ; then 80 | echo "WC UPDATED!!" 81 | updated="woocommerce" 82 | if [ $XS_VHOST_AUTOUPDATE_DEBUG ] ; then echo "$result" ; fi 83 | fi 84 | 85 | if [ "$updated" != "" ] ; then 86 | echo "- Flushing caches due to update : ${updated}" 87 | 88 | result=$(sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" rewrite flush 2>&1) 89 | result_short=${result##*$'\n'} 90 | if [[ "${result_short,,}" == *"rewrite rules flushed"* ]] ; then 91 | echo "-- Rewrite rules flushed" 92 | if [ $XS_VHOST_AUTOUPDATE_DEBUG ] ; then echo "$result" ; fi 93 | fi 94 | 95 | result=$(sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" transient delete --all 2>&1) 96 | result_short=${result##*$'\n'} 97 | if [[ "${result_short,,}" == *"transients deleted from"* ]] ; then 98 | echo "-- All transients deleted" 99 | if [ $XS_VHOST_AUTOUPDATE_DEBUG ] ; then echo "$result" ; fi 100 | fi 101 | 102 | result=$(sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" cache flush 2>&1) 103 | result_short=${result##*$'\n'} 104 | if [[ "${result_short,,}" == *"cache was flushed"* ]] ; then 105 | echo "-- Cache was flushed" 106 | if [ $XS_VHOST_AUTOUPDATE_DEBUG ] ; then echo "$result" ; fi 107 | fi 108 | 109 | result=$(sudo -u nobody /usr/local/bin/wp-cli --path="${wp_path}" lscache-purge all 2>&1) 110 | result_short=${result##*$'\n'} 111 | if [[ "${result_short,,}" == *"purged all"* ]] ; then 112 | echo "-- Purged all lscache" 113 | if [ $XS_VHOST_AUTOUPDATE_DEBUG ] ; then echo "$result" ; fi 114 | fi 115 | fi 116 | fi 117 | fi 118 | done < <(find "${vhost_dir}" -path "*/html/*" -type f -name "wp-config.php" -printf '%h\n' | sort | uniq) #dirs 119 | fi 120 | ################# WP : END 121 | else 122 | echo "ERROR: ${vhost_dir} is not a directory" 123 | fi 124 | fi 125 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # docker-openlitespeed-php 2 | # eXtremeSHOK.com Docker OpenLiteSpeed with modsecurity and pagespeed and PHP 7.4 on Ubuntu LTS 3 | 4 | ## Uses the base image extremeshok/openlitespeed : https://hub.docker.com/repository/docker/extremeshok/openlitespeed 5 | 6 | ## Checkout our optimized production web-server setup based on docker https://github.com/extremeshok/docker-webserver 7 | 8 | ## Note all configs are optimized and designed for production usage 9 | 10 | * Ubuntu LTS with S6 11 | * Will detect and apply new ssl certs automatically (WATCHMEDO_CERTS_ENABLE) 12 | * cron (/etc/cron.d) enabled for scheduling tasks, run as user nobody 13 | * cron runs every 1 minute, and will generate a new vhost cron every 15mins *if vhost_cron is enabled* 14 | * Preinstalled IP2Location DB , updated monthly on start (IP2LOCATION-LITE-DB1.IPV6.BIN from https://lite.ip2location.com) 15 | * IP2Location running in Shared Memory DB Cache 16 | * Optimized OpenLiteSpeed configs 17 | * Optimised HTTP Headers for Security (Content Security Policy (CSP), Access-Control-Allow-Methods, Content-Security-Policy, Strict-Transport-Security, X-Content-Type-Options, X-DNS-Prefetch-Control, X-Frame-Options, X-XSS-Protection) 18 | * Optimized PHP configs 19 | * session, memcached, apc serializer set to igbinary 20 | * OpenLiteSpeed installed via github releases (always newer than the repo) 21 | * OpenLiteSpeed Repository used for lsphp (litespeed-php) 22 | * IONICE set to -10 23 | * Low memory usage 24 | * HEALTHCHECK activated 25 | * Graceful shutdown 26 | * tail modsec.log, error.log and php_error.log to stdout 27 | * configs located in /etc/openlitespeed/ 28 | * php configs located in /etc/php/ 29 | * logs located in /usr/local/lsws/logs/ 30 | * default configs will be added if the config dir is empty 31 | * OWASP modsecurity rules enabled 32 | * Restart openlitespeed when changes to the vhost/domain.com/cert dirs are detected, ie ssl certificate is updated 33 | * PHP 7.4 (lsphp74) 34 | * Composer 35 | * PHPUnit 36 | * WP-CLI , (use comamnd ***wp*** , this will run wp-cli as the nobody user) 37 | * Expose php disabled 38 | * msmtp enabled: send email via external smtp server, requires SMTP_HOST, SMTP_USER, SMTP_PASS 39 | * Increased php pcre limits 40 | * xshok-vhost-fix-permissions, xshok-vhost-generate-cron and xshok-vhost-monitor-certs are all non-blocking (runs parallel) 41 | * Outputs platform information on start 42 | * mariadb-client (mysql command) added as this is required for wp-cli 43 | * vim-tiny to provide ex which allows for advanced modification of files 44 | * opcode caching in shared memory enabled 45 | * opcode file_cache saved to /var/www/vhosts/.opcache 46 | 47 | # VHOST_FIX_PERMISSIONS (enabled by default) 48 | ## Fix the vhosts folder and file perssions of the vhosts html directory 49 | * set VHOST_FIX_PERMISSIONS to false to disable, enabled by default 50 | * set XS_VHOST_FIX_PERMISSIONS_FOLDERS to false to disable fixing folder permissions, enabled by default 51 | * set XS_VHOST_FIX_PERMISSIONS_FILES to false to disable fixing file permissions, enabled by default 52 | * set XS_VHOST_FIX_PERMISSIONS_FOLDERS to false to disable, enabled by default 53 | 54 | # VHOST_CRON (disabled by default) 55 | ## generate cron from cron files located in vhost/cron (hourly) 56 | * set VHOST_CRON to true to enable, disabled by default 57 | * finds all vhost/cron files and places them in the /etc/cron.d/ , runs hourly 58 | * ignores *.readme *.disabled *.disable *.txt *.sample files 59 | * cron runs every 1 minute, and will generate a new vhost cron every 15mins 60 | * Place cron files in **/var/www/vhosts/fqdn.com/cron** , see example **/var/www/vhosts/localhost/cron/example** 61 | 62 | # VHOST_MONITOR_CERTS (enabled by default) 63 | ## Gracefully restarts openlitespeed to apply certificate updates, will only restart once every 300s 64 | * set VHOST_MONITOR_CERTS to false to disable, enabled by default 65 | * monitors /var/www/vhosts/*/certs, looking for changes (only detects *.pem) 66 | 67 | # VHOST_AUTOUPDATE (enabled by default) 68 | # VHOST_AUTOUPDATE_WP (enabled by default) 69 | ## Automatically update all wordpress installs (hourly) 70 | * searches for wordpress installs located under /var/www/vhost/fqdn.com/html 71 | * updates a wordpress wordpress (plugins, themes, core, core-db, woocommerce) 72 | * if there was an update, caches are flushed (rewrites, transient, cache, lscache) 73 | * Set VHOST_AUTOUPDATE to false to disable, enabled by default 74 | * Set VHOST_AUTOUPDATE_WP to false to disable, enabled by default 75 | * Set VHOST_AUTOUPDATE_DEBUG to true to enable debug output, disabled by default 76 | * To disable a specific wordpress install from Automatic updates, create a blank "autoupdate.disable" file in the wordpress directory (ie. directory which contains wp-config.php) 77 | 78 | # PHP options (with defaults) 79 | * PHP_TIMEZONE=UTC 80 | * PHP_MAX_TIME=300 (in seconds) 81 | * PHP_MAX_UPLOAD_SIZE=32 (in mbyte) 82 | * PHP_MEMORY_LIMIT=256 (in mbyte) 83 | * PHP_DISABLE_FUNCTIONS=shell_exec (set to false to disable, can use a comma separated list) 84 | ## Enable PHP Error messages only (error_reporting = E_ERROR & E_RECOVERABLE_ERROR & E_CORE_ERROR & E_USER_ERROR) 85 | * PHP_ERRORS_ONLY=yes 86 | ## Enable PHP-Redis-sessions (disabled by default) 87 | * PHP_REDIS_SESSIONS=yes 88 | * PHP_REDIS_HOST=redis 89 | * PHP_REDIS_PORT=6379 90 | ## EXTERNAL SMTP (disabled by default), set hostname, user and pass to enable 91 | * PHP_SMTP_HOST=mail.yoursmtp.com 92 | * PHP_SMTP_PORT=587 93 | * PHP_SMTP_USER=mail@yoursmtp.com 94 | * PHP_SMTP_PASS=securpassword 95 | 96 | # Notes: 97 | * PHP74 linked to /usr/bin/php and /usr/local/lsws/fcgi-bin/lsphp 98 | 99 | # Included Modules: 100 | * cache 101 | * mod_js 102 | * mod_security 103 | * modgzip 104 | * modinspector 105 | * modpagespeed 106 | * modreqparser 107 | * uploadprogress 108 | 109 | # Included PHP Modules 110 | * apcu 111 | * curl 112 | * dev 113 | * igbinary 114 | * imagick 115 | * imap 116 | * intl 117 | * json 118 | * memcached 119 | * msgpack 120 | * mysql 121 | * opcache 122 | * pear 123 | * redis 124 | * sqlite3 125 | 126 | ### Note: ioncube ** not supported in php7.4 ** 127 | 128 | # Usage 129 | Place files in **/var/www/vhosts/fqdn.com/** , see example **/var/www/vhosts/localhost/** 130 | 131 | # Ports 132 | * 80 : http 133 | * 443 : httpS 134 | * 443/udp : quic aka http/2 135 | * 7080 : webadmin 136 | * 8088 : example 137 | 138 | # Default WebAdmin Login 139 | * https://127.0.0.1:7080 140 | * user: admin 141 | * Password: please use the password set below 142 | 143 | # To set your own password 144 | replace container name with the container name, eg xs_openlitespeed-_1 145 | ``` 146 | docker exec -ti containername /bin/bash '/usr/local/lsws/admin/misc/admpass.sh' 147 | ``` 148 | # Check the headers 149 | ``` 150 | curl -XGET --resolve domain.com:443:ip.ad.re.ss https://domain.com -k -I 151 | ``` 152 | -------------------------------------------------------------------------------- /rootfs/xshok-init.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | ################################################################################ 3 | # This is property of eXtremeSHOK.com 4 | # You are free to use, modify and distribute, however you may not remove this notice. 5 | # Copyright (c) Adrian Jon Kriel :: admin@extremeshok.com 6 | ################################################################################ 7 | ## enable case insensitve matching 8 | shopt -s nocaseglob 9 | 10 | ###### DEFAULTS ###### 11 | PHP_INI="/etc/php/litespeed/php.ini" 12 | ADDITIONAL_PHP_INI="/etc/php/mods-available/" 13 | 14 | ###### VARIBLES ###### 15 | # Support legacy varible 16 | XS_VHOST_AUTOUPDATE_WP=${VHOST_AUTOUPDATE_WP:-no} 17 | 18 | XS_REDIS_SESSIONS=${PHP_REDIS_SESSIONS:-no} 19 | XS_REDIS_HOST=${PHP_REDIS_HOST:-redis} 20 | XS_REDIS_PORT=${PHP_REDIS_PORT:-6379} 21 | 22 | XS_TIMEZONE=${PHP_TIMEZONE:-UTC} 23 | 24 | XS_DISABLE_FUNCTIONS=${PHP_DISABLE_FUNCTIONS:-shell_exec} 25 | 26 | XS_MAX_UPLOAD_SIZE=${PHP_MAX_UPLOAD_SIZE:-32} 27 | XS_MAX_UPLOAD_SIZE="${XS_MAX_UPLOAD_SIZE%m}" 28 | XS_MAX_UPLOAD_SIZE="${XS_MAX_UPLOAD_SIZE%M}" 29 | 30 | XS_MAX_TIME=${PHP_MAX_TIME:-300} 31 | XS_MAX_TIME="${XS_MAX_TIME%s}" 32 | XS_MAX_TIME="${XS_MAX_TIME%S}" 33 | 34 | XS_MEMORY_LIMIT=${PHP_MEMORY_LIMIT:-256} 35 | XS_MEMORY_LIMIT="${XS_MEMORY_LIMIT%M}" 36 | XS_MEMORY_LIMIT="${XS_MEMORY_LIMIT%m}" 37 | 38 | XS_SMTP_HOST=${PHP_SMTP_HOST:-} 39 | XS_SMTP_PORT=${PHP_SMTP_PORT:-587} 40 | XS_SMTP_USER=${PHP_SMTP_USER:-} 41 | XS_SMTP_PASSWORD=${PHP_SMTP_PASSWORD:-} 42 | 43 | XS_ERRORS_ONLY=${PHP_ERRORS_ONLY:-yes} 44 | 45 | ###### ECC ###### 46 | 47 | if [[ $XS_MEMORY_LIMIT -lt 64 ]] ; then 48 | echo "WARNING: XS_MEMORY_LIMIT if ${XS_MEMORY_LIMIT} too low, setting to 128" 49 | XS_MEMORY_LIMIT=128 50 | fi 51 | if [ "${XS_REDIS_SESSIONS,,}" == "yes" ] || [ "${XS_REDIS_SESSIONS,,}" == "true" ] || [ "${XS_REDIS_SESSIONS,,}" == "on" ] || [ "${XS_REDIS_SESSIONS,,}" == "1" ] ; then 52 | XS_REDIS_SESSIONS=true 53 | else 54 | XS_REDIS_SESSIONS=false 55 | fi 56 | if [ "${XS_ERRORS_ONLY,,}" == "yes" ] || [ "${XS_ERRORS_ONLY,,}" == "true" ] || [ "${XS_ERRORS_ONLY,,}" == "on" ] || [ "${XS_ERRORS_ONLY,,}" == "1" ] ; then 57 | XS_ERRORS_ONLY=true 58 | else 59 | XS_ERRORS_ONLY=false 60 | fi 61 | 62 | ###### Initialize Configs ###### 63 | # Restore configs if they are missing, ie if a new/empty volume was used to store the configs 64 | if [ ! -f "$PHP_INI" ] ; then 65 | cp -rf /usr/local/lsws/default/php/* /etc/php/ 66 | fi 67 | 68 | ###### MSMTP ###### 69 | ## Configure Remote SMTP config 70 | if [ -d "/etc/" ] && [ -w "/etc/" ] ; then 71 | 72 | if [ "$XS_SMTP_HOST" != "" ] && [ "$XS_SMTP_USER" != "" ] && [ "$XS_SMTP_PASSWORD" != "" ] ; then 73 | echo "Installing remote smtp (msmtp)" 74 | 75 | cat << EOF >> /etc/msmtprc 76 | defaults 77 | port ${XS_SMTP_PORT} 78 | tls on 79 | tls_starttls on 80 | tls_certcheck off 81 | 82 | account remote 83 | host ${XS_SMTP_HOST} 84 | from ${XS_SMTP_USER} 85 | auth on 86 | user ${XS_SMTP_USER} 87 | password ${XS_SMTP_PASSWORD} 88 | 89 | account default : remote 90 | 91 | EOF 92 | if [ -f "/usr/sbin/sendmail" ] ; then 93 | mv -f /usr/sbin/sendmail /usr/sbin/sendmail.disabled 94 | fi 95 | ln -s /usr/bin/msmtp /usr/sbin/sendmail 96 | else 97 | rm -f /etc/msmtprc 98 | if [ -f "/usr/sbin/sendmail.disabled" ] ; then 99 | mv -f /usr/sbin/sendmail.disabled /usr/sbin/sendmail 100 | fi 101 | fi 102 | fi 103 | 104 | mkdir -p "/var/www/vhosts/.opcache" 105 | 106 | ###### CONFIGURE PHP ###### 107 | if [ -d "$ADDITIONAL_PHP_INI" ] && [ -w "$ADDITIONAL_PHP_INI" ] ; then 108 | # MSMTP 109 | if [ "$XS_SMTP_HOST" != "" ] && [ "$XS_SMTP_USER" != "" ] && [ "$XS_SMTP_PASSWORD" != "" ] ; then 110 | echo "Installing remote smtp (msmtp)" 111 | echo 'sendmail_path = "/usr/bin/msmtp -C /etc/msmtprc -t"' > "${ADDITIONAL_PHP_INI}/xs_msmtp.ini" 112 | else 113 | rm -f "${ADDITIONAL_PHP_INI}/xs_msmtp.ini" 114 | fi 115 | ## disable functions 116 | if [ "${XS_DISABLE_FUNCTIONS,,}" == "no" ] || [ "${XS_DISABLE_FUNCTIONS,,}" == "false" ] || [ "${XS_DISABLE_FUNCTIONS,,}" ] || [ "${XS_DISABLE_FUNCTIONS,,}" ] ; then 117 | echo "" > "${ADDITIONAL_PHP_INI}/xs_disable_functions.conf" 118 | else 119 | echo "Disabling functions" 120 | echo "php_admin_value[disable_functions] = ${XS_DISABLE_FUNCTIONS,,}" > "${ADDITIONAL_PHP_INI}/xs_disable_functions.conf" 121 | fi 122 | # ioncube 123 | # if [ "$XS_IONCUBE" == "yes" ] || [ "$XS_IONCUBE" == "true" ] || [ "$XS_IONCUBE" == "on" ] || [ "$XS_IONCUBE" == "1" ] ; then 124 | # echo "Enabling ioncube" 125 | # echo "zend_extension=/usr/lib/php7.4/modules/ioncube_loader_lin_7.4.so" > "${ADDITIONAL_PHP_INI}/000000_ioncube.ini" 126 | # elif [ -f "${ADDITIONAL_PHP_INI}/000000_ioncube.ini" ] ; then 127 | # rm -f "${ADDITIONAL_PHP_INI}/000000_ioncube.ini" 128 | # fi 129 | # Redis sessions 130 | if [ $XS_REDIS_SESSIONS ] ; then 131 | echo "Enabling redis sessions" 132 | cat << EOF > "${ADDITIONAL_PHP_INI}/xs_redis.ini" 133 | session.save_handler = redis 134 | session.save_path = "tcp://${XS_REDIS_HOST}:${XS_REDIS_PORT}" 135 | EOF 136 | elif [ -f "${ADDITIONAL_PHP_INI}/xs_redis.ini" ] ; then 137 | rm -f "${ADDITIONAL_PHP_INI}/xs_redis.ini" 138 | fi 139 | # Error messages only 140 | if [ $XS_ERRORS_ONLY ] ; then 141 | echo "Enabling redis sessions" 142 | cat << EOF > "${ADDITIONAL_PHP_INI}/xs_errors_only.ini" 143 | error_reporting = E_ERROR & E_RECOVERABLE_ERROR & E_CORE_ERROR & E_USER_ERROR 144 | EOF 145 | elif [ -f "${ADDITIONAL_PHP_INI}/xs_errors_only.ini" ] ; then 146 | rm -f "${ADDITIONAL_PHP_INI}/xs_errors_only.ini" 147 | fi 148 | # timezone 149 | echo "date.timezone = ${XS_TIMEZONE}" > "${ADDITIONAL_PHP_INI}/xs_timezone.ini" 150 | # execution times 151 | cat << EOF > "${ADDITIONAL_PHP_INI}/xs_max_time.ini" 152 | max_execution_time = ${XS_MAX_TIME} 153 | max_input_time = ${XS_MAX_TIME} 154 | EOF 155 | # upload size 156 | cat << EOF > "${ADDITIONAL_PHP_INI}/xs_max_upload_size.ini" 157 | upload_max_filesize = ${XS_MAX_UPLOAD_SIZE}M 158 | post_max_size = ${XS_MAX_UPLOAD_SIZE}M 159 | EOF 160 | # memory limit 161 | echo "memory_limit = ${XS_MEMORY_LIMIT}M" > "${ADDITIONAL_PHP_INI}/xs_memory_limit.ini" 162 | fi 163 | echo "#### Checking PHP Binaries ####" 164 | if ! /usr/local/lsws/fcgi-bin/lsphp -v | grep -q "(litespeed)" ; then 165 | echo "ERROR: /usr/local/lsws/fcgi-bin/lsphp is not a (litespeed) binary, sleeping ......" 166 | sleep 1d 167 | exit 1 168 | fi 169 | if ! /usr/bin/php -v | grep -q "(cli)" ; then 170 | echo "ERROR: /usr/bin/php is not a (cli) binary, sleeping ......" 171 | sleep 1d 172 | exit 1 173 | fi 174 | 175 | echo "#### Checking PHP configs ####" 176 | /usr/bin/php -t ${PHP_INI} 177 | result=$? 178 | if [ "$result" != "0" ] ; then 179 | echo "ERROR: CONFIG DAMAGED, sleeping ......" 180 | sleep 1d 181 | exit 1 182 | fi 183 | 184 | ###### WAIT FOR REDIS SERVER ###### 185 | if [ $XS_REDIS_SESSIONS ] ; then 186 | # wait for redis to start 187 | echo "waiting for redis ${XS_REDIS_HOST}:${XS_REDIS_PORT}" 188 | while ! echo PING | nc -q 10 ${XS_REDIS_HOST} ${XS_REDIS_PORT} ; do 189 | echo "waiting for redis ${XS_REDIS_HOST}:${XS_REDIS_PORT}" 190 | sleep 5s 191 | done 192 | fi 193 | -------------------------------------------------------------------------------- /rootfs/etc/php/litespeed/php.ini: -------------------------------------------------------------------------------- 1 | [PHP] 2 | 3 | ;;;;;;;;;;;;;;;;;;; 4 | ; About php.ini ; 5 | ;;;;;;;;;;;;;;;;;;; 6 | ; PHP's initialization file, generally called php.ini, is responsible for 7 | ; configuring many of the aspects of PHP's behavior. 8 | 9 | ; PHP attempts to find and load this configuration from a number of locations. 10 | ; The following is a summary of its search order: 11 | ; 1. SAPI module specific location. 12 | ; 2. The PHPRC environment variable. (As of PHP 5.2.0) 13 | ; 3. A number of predefined registry keys on Windows (As of PHP 5.2.0) 14 | ; 4. Current working directory (except CLI) 15 | ; 5. The web server's directory (for SAPI modules), or directory of PHP 16 | ; (otherwise in Windows) 17 | ; 6. The directory from the --with-config-file-path compile time option, or the 18 | ; Windows directory (usually C:\windows) 19 | ; See the PHP docs for more specific information. 20 | ; http://php.net/configuration.file 21 | 22 | ; The syntax of the file is extremely simple. Whitespace and lines 23 | ; beginning with a semicolon are silently ignored (as you probably guessed). 24 | ; Section headers (e.g. [Foo]) are also silently ignored, even though 25 | ; they might mean something in the future. 26 | 27 | ; Directives following the section heading [PATH=/www/mysite] only 28 | ; apply to PHP files in the /www/mysite directory. Directives 29 | ; following the section heading [HOST=www.example.com] only apply to 30 | ; PHP files served from www.example.com. Directives set in these 31 | ; special sections cannot be overridden by user-defined INI files or 32 | ; at runtime. Currently, [PATH=] and [HOST=] sections only work under 33 | ; CGI/FastCGI. 34 | ; http://php.net/ini.sections 35 | 36 | ; Directives are specified using the following syntax: 37 | ; directive = value 38 | ; Directive names are *case sensitive* - foo=bar is different from FOO=bar. 39 | ; Directives are variables used to configure PHP or PHP extensions. 40 | ; There is no name validation. If PHP can't find an expected 41 | ; directive because it is not set or is mistyped, a default value will be used. 42 | 43 | ; The value can be a string, a number, a PHP constant (e.g. E_ALL or M_PI), one 44 | ; of the INI constants (On, Off, True, False, Yes, No and None) or an expression 45 | ; (e.g. E_ALL & ~E_NOTICE), a quoted string ("bar"), or a reference to a 46 | ; previously set variable or directive (e.g. ${foo}) 47 | 48 | ; Expressions in the INI file are limited to bitwise operators and parentheses: 49 | ; | bitwise OR 50 | ; ^ bitwise XOR 51 | ; & bitwise AND 52 | ; ~ bitwise NOT 53 | ; ! boolean NOT 54 | 55 | ; Boolean flags can be turned on using the values 1, On, True or Yes. 56 | ; They can be turned off using the values 0, Off, False or No. 57 | 58 | ; An empty string can be denoted by simply not writing anything after the equal 59 | ; sign, or by using the None keyword: 60 | 61 | ; foo = ; sets foo to an empty string 62 | ; foo = None ; sets foo to an empty string 63 | ; foo = "None" ; sets foo to the string 'None' 64 | 65 | ; If you use constants in your value, and these constants belong to a 66 | ; dynamically loaded extension (either a PHP extension or a Zend extension), 67 | ; you may only use these constants *after* the line that loads the extension. 68 | 69 | ;;;;;;;;;;;;;;;;;;; 70 | ; About this file ; 71 | ;;;;;;;;;;;;;;;;;;; 72 | ; PHP comes packaged with two INI files. One that is recommended to be used 73 | ; in production environments and one that is recommended to be used in 74 | ; development environments. 75 | 76 | ; php.ini-production contains settings which hold security, performance and 77 | ; best practices at its core. But please be aware, these settings may break 78 | ; compatibility with older or less security conscience applications. We 79 | ; recommending using the production ini in production and testing environments. 80 | 81 | ; php.ini-development is very similar to its production variant, except it is 82 | ; much more verbose when it comes to errors. We recommend using the 83 | ; development version only in development environments, as errors shown to 84 | ; application users can inadvertently leak otherwise secure information. 85 | 86 | ; This is the php.ini-production INI file. 87 | 88 | ;;;;;;;;;;;;;;;;;;; 89 | ; Quick Reference ; 90 | ;;;;;;;;;;;;;;;;;;; 91 | ; The following are all the settings which are different in either the production 92 | ; or development versions of the INIs with respect to PHP's default behavior. 93 | ; Please see the actual settings later in the document for more details as to why 94 | ; we recommend these changes in PHP's behavior. 95 | 96 | ; display_errors 97 | ; Default Value: On 98 | ; Development Value: On 99 | ; Production Value: Off 100 | 101 | ; display_startup_errors 102 | ; Default Value: Off 103 | ; Development Value: On 104 | ; Production Value: Off 105 | 106 | ; error_reporting 107 | ; Default Value: E_ALL & ~E_NOTICE & ~E_STRICT & ~E_DEPRECATED 108 | ; Development Value: E_ALL 109 | ; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT 110 | 111 | ; log_errors 112 | ; Default Value: Off 113 | ; Development Value: On 114 | ; Production Value: On 115 | 116 | ; max_input_time 117 | ; Default Value: -1 (Unlimited) 118 | ; Development Value: 60 (60 seconds) 119 | ; Production Value: 60 (60 seconds) 120 | 121 | ; output_buffering 122 | ; Default Value: Off 123 | ; Development Value: 4096 124 | ; Production Value: 4096 125 | 126 | ; register_argc_argv 127 | ; Default Value: On 128 | ; Development Value: Off 129 | ; Production Value: Off 130 | 131 | ; request_order 132 | ; Default Value: None 133 | ; Development Value: "GP" 134 | ; Production Value: "GP" 135 | 136 | ; session.gc_divisor 137 | ; Default Value: 100 138 | ; Development Value: 1000 139 | ; Production Value: 1000 140 | 141 | ; session.sid_bits_per_character 142 | ; Default Value: 4 143 | ; Development Value: 5 144 | ; Production Value: 5 145 | 146 | ; short_open_tag 147 | ; Default Value: On 148 | ; Development Value: Off 149 | ; Production Value: Off 150 | 151 | ; variables_order 152 | ; Default Value: "EGPCS" 153 | ; Development Value: "GPCS" 154 | ; Production Value: "GPCS" 155 | 156 | ;;;;;;;;;;;;;;;;;;;; 157 | ; php.ini Options ; 158 | ;;;;;;;;;;;;;;;;;;;; 159 | ; Name for user-defined php.ini (.htaccess) files. Default is ".user.ini" 160 | ;user_ini.filename = ".user.ini" 161 | 162 | ; To disable this feature set this option to an empty value 163 | ;user_ini.filename = 164 | 165 | ; TTL for user-defined php.ini files (time-to-live) in seconds. Default is 300 seconds (5 minutes) 166 | ;user_ini.cache_ttl = 300 167 | 168 | ;;;;;;;;;;;;;;;;;;;; 169 | ; Language Options ; 170 | ;;;;;;;;;;;;;;;;;;;; 171 | 172 | ; Enable the PHP scripting language engine under Apache. 173 | ; http://php.net/engine 174 | engine = On 175 | 176 | ; This directive determines whether or not PHP will recognize code between 177 | ; tags as PHP source which should be processed as such. It is 178 | ; generally recommended that should be used and that this feature 179 | ; should be disabled, as enabling it may result in issues when generating XML 180 | ; documents, however this remains supported for backward compatibility reasons. 181 | ; Note that this directive does not control the would work. 321 | ; http://php.net/syntax-highlighting 322 | ;highlight.string = #DD0000 323 | ;highlight.comment = #FF9900 324 | ;highlight.keyword = #007700 325 | ;highlight.default = #0000BB 326 | ;highlight.html = #000000 327 | 328 | ; If enabled, the request will be allowed to complete even if the user aborts 329 | ; the request. Consider enabling it if executing long requests, which may end up 330 | ; being interrupted by the user or a browser timing out. PHP's default behavior 331 | ; is to disable this feature. 332 | ; http://php.net/ignore-user-abort 333 | ;ignore_user_abort = On 334 | 335 | ; Determines the size of the realpath cache to be used by PHP. This value should 336 | ; be increased on systems where PHP opens many files to reflect the quantity of 337 | ; the file operations performed. 338 | ; Note: if open_basedir is set, the cache is disabled 339 | ; http://php.net/realpath-cache-size 340 | ;realpath_cache_size = 4096k 341 | 342 | ; Duration of time, in seconds for which to cache realpath information for a given 343 | ; file or directory. For systems with rarely changing files, consider increasing this 344 | ; value. 345 | ; http://php.net/realpath-cache-ttl 346 | ;realpath_cache_ttl = 120 347 | 348 | ; Enables or disables the circular reference collector. 349 | ; http://php.net/zend.enable-gc 350 | zend.enable_gc = On 351 | 352 | ; If enabled, scripts may be written in encodings that are incompatible with 353 | ; the scanner. CP936, Big5, CP949 and Shift_JIS are the examples of such 354 | ; encodings. To use this feature, mbstring extension must be enabled. 355 | ; Default: Off 356 | ;zend.multibyte = Off 357 | 358 | ; Allows to set the default encoding for the scripts. This value will be used 359 | ; unless "declare(encoding=...)" directive appears at the top of the script. 360 | ; Only affects if zend.multibyte is set. 361 | ; Default: "" 362 | ;zend.script_encoding = 363 | 364 | ; Allows to include or exclude arguments from stack traces generated for exceptions 365 | ; Default: Off 366 | ; In production, it is recommended to turn this setting on to prohibit the output 367 | ; of sensitive information in stack traces 368 | zend.exception_ignore_args = On 369 | 370 | ;;;;;;;;;;;;;;;;; 371 | ; Miscellaneous ; 372 | ;;;;;;;;;;;;;;;;; 373 | 374 | ; Decides whether PHP may expose the fact that it is installed on the server 375 | ; (e.g. by adding its signature to the Web server header). It is no security 376 | ; threat in any way, but it makes it possible to determine whether you use PHP 377 | ; on your server or not. 378 | ; http://php.net/expose-php 379 | expose_php = Off 380 | 381 | ;;;;;;;;;;;;;;;;;;; 382 | ; Resource Limits ; 383 | ;;;;;;;;;;;;;;;;;;; 384 | 385 | ; Maximum execution time of each script, in seconds 386 | ; http://php.net/max-execution-time 387 | ; Note: This directive is hardcoded to 0 for the CLI SAPI 388 | max_execution_time = 600 389 | 390 | ; Maximum amount of time each script may spend parsing request data. It's a good 391 | ; idea to limit this time on productions servers in order to eliminate unexpectedly 392 | ; long running scripts. 393 | ; Note: This directive is hardcoded to -1 for the CLI SAPI 394 | ; Default Value: -1 (Unlimited) 395 | ; Development Value: 60 (60 seconds) 396 | ; Production Value: 60 (60 seconds) 397 | ; http://php.net/max-input-time 398 | max_input_time = 300 399 | 400 | ; Maximum input variable nesting level 401 | ; http://php.net/max-input-nesting-level 402 | ;max_input_nesting_level = 64 403 | 404 | ; How many GET/POST/COOKIE input variables may be accepted 405 | max_input_vars = 10000 406 | 407 | ; Maximum amount of memory a script may consume 408 | ; http://php.net/memory-limit 409 | memory_limit = 256M 410 | 411 | ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; 412 | ; Error handling and logging ; 413 | ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; 414 | 415 | ; This directive informs PHP of which errors, warnings and notices you would like 416 | ; it to take action for. The recommended way of setting values for this 417 | ; directive is through the use of the error level constants and bitwise 418 | ; operators. The error level constants are below here for convenience as well as 419 | ; some common settings and their meanings. 420 | ; By default, PHP is set to take action on all errors, notices and warnings EXCEPT 421 | ; those related to E_NOTICE and E_STRICT, which together cover best practices and 422 | ; recommended coding standards in PHP. For performance reasons, this is the 423 | ; recommend error reporting setting. Your production server shouldn't be wasting 424 | ; resources complaining about best practices and coding standards. That's what 425 | ; development servers and development settings are for. 426 | ; Note: The php.ini-development file has this setting as E_ALL. This 427 | ; means it pretty much reports everything which is exactly what you want during 428 | ; development and early testing. 429 | ; 430 | ; Error Level Constants: 431 | ; E_ALL - All errors and warnings (includes E_STRICT as of PHP 5.4.0) 432 | ; E_ERROR - fatal run-time errors 433 | ; E_RECOVERABLE_ERROR - almost fatal run-time errors 434 | ; E_WARNING - run-time warnings (non-fatal errors) 435 | ; E_PARSE - compile-time parse errors 436 | ; E_NOTICE - run-time notices (these are warnings which often result 437 | ; from a bug in your code, but it's possible that it was 438 | ; intentional (e.g., using an uninitialized variable and 439 | ; relying on the fact it is automatically initialized to an 440 | ; empty string) 441 | ; E_STRICT - run-time notices, enable to have PHP suggest changes 442 | ; to your code which will ensure the best interoperability 443 | ; and forward compatibility of your code 444 | ; E_CORE_ERROR - fatal errors that occur during PHP's initial startup 445 | ; E_CORE_WARNING - warnings (non-fatal errors) that occur during PHP's 446 | ; initial startup 447 | ; E_COMPILE_ERROR - fatal compile-time errors 448 | ; E_COMPILE_WARNING - compile-time warnings (non-fatal errors) 449 | ; E_USER_ERROR - user-generated error message 450 | ; E_USER_WARNING - user-generated warning message 451 | ; E_USER_NOTICE - user-generated notice message 452 | ; E_DEPRECATED - warn about code that will not work in future versions 453 | ; of PHP 454 | ; E_USER_DEPRECATED - user-generated deprecation warnings 455 | ; 456 | ; Common Values: 457 | ; E_ALL (Show all errors, warnings and notices including coding standards.) 458 | ; E_ALL & ~E_NOTICE (Show all errors, except for notices) 459 | ; E_ALL & ~E_NOTICE & ~E_STRICT (Show all errors, except for notices and coding standards warnings.) 460 | ; E_COMPILE_ERROR|E_RECOVERABLE_ERROR|E_ERROR|E_CORE_ERROR (Show only errors) 461 | ; Default Value: E_ALL & ~E_NOTICE & ~E_STRICT & ~E_DEPRECATED 462 | ; Development Value: E_ALL 463 | ; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT 464 | ; http://php.net/error-reporting 465 | error_reporting = E_ALL & ~E_WARNING & ~E_NOTICE & ~E_STRICT & ~E_DEPRECATED 466 | 467 | ; This directive controls whether or not and where PHP will output errors, 468 | ; notices and warnings too. Error output is very useful during development, but 469 | ; it could be very dangerous in production environments. Depending on the code 470 | ; which is triggering the error, sensitive information could potentially leak 471 | ; out of your application such as database usernames and passwords or worse. 472 | ; For production environments, we recommend logging errors rather than 473 | ; sending them to STDOUT. 474 | ; Possible Values: 475 | ; Off = Do not display any errors 476 | ; stderr = Display errors to STDERR (affects only CGI/CLI binaries!) 477 | ; On or stdout = Display errors to STDOUT 478 | ; Default Value: On 479 | ; Development Value: On 480 | ; Production Value: Off 481 | ; http://php.net/display-errors 482 | display_errors = Off 483 | 484 | ; The display of errors which occur during PHP's startup sequence are handled 485 | ; separately from display_errors. PHP's default behavior is to suppress those 486 | ; errors from clients. Turning the display of startup errors on can be useful in 487 | ; debugging configuration problems. We strongly recommend you 488 | ; set this to 'off' for production servers. 489 | ; Default Value: Off 490 | ; Development Value: On 491 | ; Production Value: Off 492 | ; http://php.net/display-startup-errors 493 | display_startup_errors = On 494 | 495 | ; Besides displaying errors, PHP can also log errors to locations such as a 496 | ; server-specific log, STDERR, or a location specified by the error_log 497 | ; directive found below. While errors should not be displayed on productions 498 | ; servers they should still be monitored and logging is a great way to do that. 499 | ; Default Value: Off 500 | ; Development Value: On 501 | ; Production Value: On 502 | ; http://php.net/log-errors 503 | log_errors = On 504 | error_log = /usr/local/lsws/logs/php_error.log 505 | 506 | ; Set maximum length of log_errors. In error_log information about the source is 507 | ; added. The default is 1024 and 0 allows to not apply any maximum length at all. 508 | ; http://php.net/log-errors-max-len 509 | log_errors_max_len = 1024 510 | 511 | ; Do not log repeated messages. Repeated errors must occur in same file on same 512 | ; line unless ignore_repeated_source is set true. 513 | ; http://php.net/ignore-repeated-errors 514 | ignore_repeated_errors = Off 515 | 516 | ; Ignore source of message when ignoring repeated messages. When this setting 517 | ; is On you will not log errors with repeated messages from different files or 518 | ; source lines. 519 | ; http://php.net/ignore-repeated-source 520 | ignore_repeated_source = Off 521 | 522 | ; If this parameter is set to Off, then memory leaks will not be shown (on 523 | ; stdout or in the log). This is only effective in a debug compile, and if 524 | ; error reporting includes E_WARNING in the allowed list 525 | ; http://php.net/report-memleaks 526 | report_memleaks = Off 527 | 528 | ; This setting is on by default. 529 | ;report_zend_debug = 0 530 | 531 | ; Store the last error/warning message in $php_errormsg (boolean). Setting this value 532 | ; to On can assist in debugging and is appropriate for development servers. It should 533 | ; however be disabled on production servers. 534 | ; This directive is DEPRECATED. 535 | ; Default Value: Off 536 | ; Development Value: Off 537 | ; Production Value: Off 538 | ; http://php.net/track-errors 539 | ;track_errors = Off 540 | 541 | ; Turn off normal error reporting and emit XML-RPC error XML 542 | ; http://php.net/xmlrpc-errors 543 | ;xmlrpc_errors = 0 544 | 545 | ; An XML-RPC faultCode 546 | ;xmlrpc_error_number = 0 547 | 548 | ; When PHP displays or logs an error, it has the capability of formatting the 549 | ; error message as HTML for easier reading. This directive controls whether 550 | ; the error message is formatted as HTML or not. 551 | ; Note: This directive is hardcoded to Off for the CLI SAPI 552 | ; http://php.net/html-errors 553 | ;html_errors = On 554 | 555 | ; If html_errors is set to On *and* docref_root is not empty, then PHP 556 | ; produces clickable error messages that direct to a page describing the error 557 | ; or function causing the error in detail. 558 | ; You can download a copy of the PHP manual from http://php.net/docs 559 | ; and change docref_root to the base URL of your local copy including the 560 | ; leading '/'. You must also specify the file extension being used including 561 | ; the dot. PHP's default behavior is to leave these settings empty, in which 562 | ; case no links to documentation are generated. 563 | ; Note: Never use this feature for production boxes. 564 | ; http://php.net/docref-root 565 | ; Examples 566 | ;docref_root = "/phpmanual/" 567 | 568 | ; http://php.net/docref-ext 569 | ;docref_ext = .html 570 | 571 | ; String to output before an error message. PHP's default behavior is to leave 572 | ; this setting blank. 573 | ; http://php.net/error-prepend-string 574 | ; Example: 575 | ;error_prepend_string = "" 576 | 577 | ; String to output after an error message. PHP's default behavior is to leave 578 | ; this setting blank. 579 | ; http://php.net/error-append-string 580 | ; Example: 581 | ;error_append_string = "" 582 | 583 | ; Log errors to specified file. PHP's default behavior is to leave this value 584 | ; empty. 585 | ; http://php.net/error-log 586 | ; Example: 587 | ;error_log = php_errors.log 588 | ; Log errors to syslog (Event Log on Windows). 589 | ;error_log = syslog 590 | 591 | ; The syslog ident is a string which is prepended to every message logged 592 | ; to syslog. Only used when error_log is set to syslog. 593 | ;syslog.ident = php 594 | 595 | ; The syslog facility is used to specify what type of program is logging 596 | ; the message. Only used when error_log is set to syslog. 597 | ;syslog.facility = user 598 | 599 | ; Set this to disable filtering control characters (the default). 600 | ; Some loggers only accept NVT-ASCII, others accept anything that's not 601 | ; control characters. If your logger accepts everything, then no filtering 602 | ; is needed at all. 603 | ; Allowed values are: 604 | ; ascii (all printable ASCII characters and NL) 605 | ; no-ctrl (all characters except control characters) 606 | ; all (all characters) 607 | ; raw (like "all", but messages are not split at newlines) 608 | ; http://php.net/syslog.filter 609 | ;syslog.filter = ascii 610 | 611 | ;windows.show_crt_warning 612 | ; Default value: 0 613 | ; Development value: 0 614 | ; Production value: 0 615 | 616 | ;;;;;;;;;;;;;;;;; 617 | ; Data Handling ; 618 | ;;;;;;;;;;;;;;;;; 619 | 620 | ; The separator used in PHP generated URLs to separate arguments. 621 | ; PHP's default setting is "&". 622 | ; http://php.net/arg-separator.output 623 | ; Example: 624 | ;arg_separator.output = "&" 625 | 626 | ; List of separator(s) used by PHP to parse input URLs into variables. 627 | ; PHP's default setting is "&". 628 | ; NOTE: Every character in this directive is considered as separator! 629 | ; http://php.net/arg-separator.input 630 | ; Example: 631 | ;arg_separator.input = ";&" 632 | 633 | ; This directive determines which super global arrays are registered when PHP 634 | ; starts up. G,P,C,E & S are abbreviations for the following respective super 635 | ; globals: GET, POST, COOKIE, ENV and SERVER. There is a performance penalty 636 | ; paid for the registration of these arrays and because ENV is not as commonly 637 | ; used as the others, ENV is not recommended on productions servers. You 638 | ; can still get access to the environment variables through getenv() should you 639 | ; need to. 640 | ; Default Value: "EGPCS" 641 | ; Development Value: "GPCS" 642 | ; Production Value: "GPCS"; 643 | ; http://php.net/variables-order 644 | variables_order = "GPCS" 645 | 646 | ; This directive determines which super global data (G,P & C) should be 647 | ; registered into the super global array REQUEST. If so, it also determines 648 | ; the order in which that data is registered. The values for this directive 649 | ; are specified in the same manner as the variables_order directive, 650 | ; EXCEPT one. Leaving this value empty will cause PHP to use the value set 651 | ; in the variables_order directive. It does not mean it will leave the super 652 | ; globals array REQUEST empty. 653 | ; Default Value: None 654 | ; Development Value: "GP" 655 | ; Production Value: "GP" 656 | ; http://php.net/request-order 657 | request_order = "GP" 658 | 659 | ; This directive determines whether PHP registers $argv & $argc each time it 660 | ; runs. $argv contains an array of all the arguments passed to PHP when a script 661 | ; is invoked. $argc contains an integer representing the number of arguments 662 | ; that were passed when the script was invoked. These arrays are extremely 663 | ; useful when running scripts from the command line. When this directive is 664 | ; enabled, registering these variables consumes CPU cycles and memory each time 665 | ; a script is executed. For performance reasons, this feature should be disabled 666 | ; on production servers. 667 | ; Note: This directive is hardcoded to On for the CLI SAPI 668 | ; Default Value: On 669 | ; Development Value: Off 670 | ; Production Value: Off 671 | ; http://php.net/register-argc-argv 672 | register_argc_argv = Off 673 | 674 | ; When enabled, the ENV, REQUEST and SERVER variables are created when they're 675 | ; first used (Just In Time) instead of when the script starts. If these 676 | ; variables are not used within a script, having this directive on will result 677 | ; in a performance gain. The PHP directive register_argc_argv must be disabled 678 | ; for this directive to have any effect. 679 | ; http://php.net/auto-globals-jit 680 | auto_globals_jit = On 681 | 682 | ; Whether PHP will read the POST data. 683 | ; This option is enabled by default. 684 | ; Most likely, you won't want to disable this option globally. It causes $_POST 685 | ; and $_FILES to always be empty; the only way you will be able to read the 686 | ; POST data will be through the php://input stream wrapper. This can be useful 687 | ; to proxy requests or to process the POST data in a memory efficient fashion. 688 | ; http://php.net/enable-post-data-reading 689 | ;enable_post_data_reading = Off 690 | 691 | ; Maximum size of POST data that PHP will accept. 692 | ; Its value may be 0 to disable the limit. It is ignored if POST data reading 693 | ; is disabled through enable_post_data_reading. 694 | ; http://php.net/post-max-size 695 | post_max_size = 64M 696 | 697 | ; Automatically add files before PHP document. 698 | ; http://php.net/auto-prepend-file 699 | auto_prepend_file = 700 | 701 | ; Automatically add files after PHP document. 702 | ; http://php.net/auto-append-file 703 | auto_append_file = 704 | 705 | ; By default, PHP will output a media type using the Content-Type header. To 706 | ; disable this, simply set it to be empty. 707 | ; 708 | ; PHP's built-in default media type is set to text/html. 709 | ; http://php.net/default-mimetype 710 | default_mimetype = "text/html" 711 | 712 | ; PHP's default character set is set to UTF-8. 713 | ; http://php.net/default-charset 714 | default_charset = "UTF-8" 715 | 716 | ; PHP internal character encoding is set to empty. 717 | ; If empty, default_charset is used. 718 | ; http://php.net/internal-encoding 719 | ;internal_encoding = 720 | 721 | ; PHP input character encoding is set to empty. 722 | ; If empty, default_charset is used. 723 | ; http://php.net/input-encoding 724 | ;input_encoding = 725 | 726 | ; PHP output character encoding is set to empty. 727 | ; If empty, default_charset is used. 728 | ; See also output_buffer. 729 | ; http://php.net/output-encoding 730 | ;output_encoding = 731 | 732 | ;;;;;;;;;;;;;;;;;;;;;;;;; 733 | ; Paths and Directories ; 734 | ;;;;;;;;;;;;;;;;;;;;;;;;; 735 | 736 | ; UNIX: "/path1:/path2" 737 | ;include_path = ".:/php/includes" 738 | ; 739 | ; Windows: "\path1;\path2" 740 | ;include_path = ".;c:\php\includes" 741 | ; 742 | ; PHP's default setting for include_path is ".;/path/to/php/pear" 743 | ; http://php.net/include-path 744 | 745 | ; The root of the PHP pages, used only if nonempty. 746 | ; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root 747 | ; if you are running php as a CGI under any web server (other than IIS) 748 | ; see documentation for security issues. The alternate is to use the 749 | ; cgi.force_redirect configuration below 750 | ; http://php.net/doc-root 751 | doc_root = 752 | 753 | ; The directory under which PHP opens the script using /~username used only 754 | ; if nonempty. 755 | ; http://php.net/user-dir 756 | user_dir = 757 | 758 | ; Directory in which the loadable extensions (modules) reside. 759 | ; http://php.net/extension-dir 760 | ;extension_dir = "./" 761 | ; On windows: 762 | ;extension_dir = "ext" 763 | 764 | ; Directory where the temporary files should be placed. 765 | ; Defaults to the system default (see sys_get_temp_dir) 766 | ;sys_temp_dir = "/tmp" 767 | 768 | ; Whether or not to enable the dl() function. The dl() function does NOT work 769 | ; properly in multithreaded servers, such as IIS or Zeus, and is automatically 770 | ; disabled on them. 771 | ; http://php.net/enable-dl 772 | enable_dl = Off 773 | 774 | ; cgi.force_redirect is necessary to provide security running PHP as a CGI under 775 | ; most web servers. Left undefined, PHP turns this on by default. You can 776 | ; turn it off here AT YOUR OWN RISK 777 | ; **You CAN safely turn this off for IIS, in fact, you MUST.** 778 | ; http://php.net/cgi.force-redirect 779 | ;cgi.force_redirect = 1 780 | 781 | ; if cgi.nph is enabled it will force cgi to always sent Status: 200 with 782 | ; every request. PHP's default behavior is to disable this feature. 783 | ;cgi.nph = 1 784 | 785 | ; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape 786 | ; (iPlanet) web servers, you MAY need to set an environment variable name that PHP 787 | ; will look for to know it is OK to continue execution. Setting this variable MAY 788 | ; cause security issues, KNOW WHAT YOU ARE DOING FIRST. 789 | ; http://php.net/cgi.redirect-status-env 790 | ;cgi.redirect_status_env = 791 | 792 | ; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's 793 | ; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok 794 | ; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting 795 | ; this to 1 will cause PHP CGI to fix its paths to conform to the spec. A setting 796 | ; of zero causes PHP to behave as before. Default is 1. You should fix your scripts 797 | ; to use SCRIPT_FILENAME rather than PATH_TRANSLATED. 798 | ; http://php.net/cgi.fix-pathinfo 799 | ;cgi.fix_pathinfo=1 800 | 801 | ; if cgi.discard_path is enabled, the PHP CGI binary can safely be placed outside 802 | ; of the web tree and people will not be able to circumvent .htaccess security. 803 | ;cgi.discard_path=1 804 | 805 | ; FastCGI under IIS supports the ability to impersonate 806 | ; security tokens of the calling client. This allows IIS to define the 807 | ; security context that the request runs under. mod_fastcgi under Apache 808 | ; does not currently support this feature (03/17/2002) 809 | ; Set to 1 if running under IIS. Default is zero. 810 | ; http://php.net/fastcgi.impersonate 811 | ;fastcgi.impersonate = 1 812 | 813 | ; Disable logging through FastCGI connection. PHP's default behavior is to enable 814 | ; this feature. 815 | ;fastcgi.logging = 0 816 | 817 | ; cgi.rfc2616_headers configuration option tells PHP what type of headers to 818 | ; use when sending HTTP response code. If set to 0, PHP sends Status: header that 819 | ; is supported by Apache. When this option is set to 1, PHP will send 820 | ; RFC2616 compliant header. 821 | ; Default is zero. 822 | ; http://php.net/cgi.rfc2616-headers 823 | ;cgi.rfc2616_headers = 0 824 | 825 | ; cgi.check_shebang_line controls whether CGI PHP checks for line starting with #! 826 | ; (shebang) at the top of the running script. This line might be needed if the 827 | ; script support running both as stand-alone script and via PHP CGI<. PHP in CGI 828 | ; mode skips this line and ignores its content if this directive is turned on. 829 | ; http://php.net/cgi.check-shebang-line 830 | ;cgi.check_shebang_line=1 831 | 832 | ;;;;;;;;;;;;;;;; 833 | ; File Uploads ; 834 | ;;;;;;;;;;;;;;;; 835 | 836 | ; Whether to allow HTTP file uploads. 837 | ; http://php.net/file-uploads 838 | file_uploads = On 839 | 840 | ; Temporary directory for HTTP uploaded files (will use system default if not 841 | ; specified). 842 | ; http://php.net/upload-tmp-dir 843 | ;upload_tmp_dir = 844 | 845 | ; Maximum allowed size for uploaded files. 846 | ; http://php.net/upload-max-filesize 847 | upload_max_filesize = 64M 848 | 849 | ; Maximum number of files that can be uploaded via a single request 850 | max_file_uploads = 20 851 | 852 | ;;;;;;;;;;;;;;;;;; 853 | ; Fopen wrappers ; 854 | ;;;;;;;;;;;;;;;;;; 855 | 856 | ; Whether to allow the treatment of URLs (like http:// or ftp://) as files. 857 | ; http://php.net/allow-url-fopen 858 | allow_url_fopen = On 859 | 860 | ; Whether to allow include/require to open URLs (like http:// or ftp://) as files. 861 | ; http://php.net/allow-url-include 862 | allow_url_include = Off 863 | 864 | ; Define the anonymous ftp password (your email address). PHP's default setting 865 | ; for this is empty. 866 | ; http://php.net/from 867 | ;from="john@doe.com" 868 | 869 | ; Define the User-Agent string. PHP's default setting for this is empty. 870 | ; http://php.net/user-agent 871 | ;user_agent="PHP" 872 | 873 | ; Default timeout for socket based streams (seconds) 874 | ; http://php.net/default-socket-timeout 875 | default_socket_timeout = 60 876 | 877 | ; If your scripts have to deal with files from Macintosh systems, 878 | ; or you are running on a Mac and need to deal with files from 879 | ; unix or win32 systems, setting this flag will cause PHP to 880 | ; automatically detect the EOL character in those files so that 881 | ; fgets() and file() will work regardless of the source of the file. 882 | ; http://php.net/auto-detect-line-endings 883 | ;auto_detect_line_endings = Off 884 | 885 | ;;;;;;;;;;;;;;;;;;;;;; 886 | ; Dynamic Extensions ; 887 | ;;;;;;;;;;;;;;;;;;;;;; 888 | 889 | ; If you wish to have an extension loaded automatically, use the following 890 | ; syntax: 891 | ; 892 | ; extension=modulename 893 | ; 894 | ; For example: 895 | ; 896 | ; extension=mysqli 897 | ; 898 | ; When the extension library to load is not located in the default extension 899 | ; directory, You may specify an absolute path to the library file: 900 | ; 901 | ; extension=/path/to/extension/mysqli.so 902 | ; 903 | ; Note : The syntax used in previous PHP versions ('extension=.so' and 904 | ; 'extension='php_.dll') is supported for legacy reasons and may be 905 | ; deprecated in a future PHP major version. So, when it is possible, please 906 | ; move to the new ('extension=) syntax. 907 | ; 908 | ; Notes for Windows environments : 909 | ; 910 | ; - Many DLL files are located in the extensions/ (PHP 4) or ext/ (PHP 5+) 911 | ; extension folders as well as the separate PECL DLL download (PHP 5+). 912 | ; Be sure to appropriately set the extension_dir directive. 913 | ; 914 | ;extension=bz2 915 | ;extension=curl 916 | ;extension=ffi 917 | ;extension=ftp 918 | ;extension=fileinfo 919 | ;extension=gd2 920 | ;extension=gettext 921 | ;extension=gmp 922 | ;extension=intl 923 | ;extension=imap 924 | ;extension=ldap 925 | ;extension=mbstring 926 | ;extension=exif ; Must be after mbstring as it depends on it 927 | ;extension=mysqli 928 | ;extension=oci8_12c ; Use with Oracle Database 12c Instant Client 929 | ;extension=odbc 930 | ;extension=openssl 931 | ;extension=pdo_firebird 932 | ;extension=pdo_mysql 933 | ;extension=pdo_oci 934 | ;extension=pdo_odbc 935 | ;extension=pdo_pgsql 936 | ;extension=pdo_sqlite 937 | ;extension=pgsql 938 | ;extension=shmop 939 | 940 | ; The MIBS data available in the PHP distribution must be installed. 941 | ; See http://www.php.net/manual/en/snmp.installation.php 942 | ;extension=snmp 943 | 944 | ;extension=soap 945 | ;extension=sockets 946 | ;extension=sodium 947 | ;extension=sqlite3 948 | ;extension=tidy 949 | ;extension=xmlrpc 950 | ;extension=xsl 951 | 952 | ;;;;;;;;;;;;;;;;;;; 953 | ; Module Settings ; 954 | ;;;;;;;;;;;;;;;;;;; 955 | 956 | [CLI Server] 957 | ; Whether the CLI web server uses ANSI color coding in its terminal output. 958 | cli_server.color = On 959 | 960 | [Date] 961 | ; Defines the default timezone used by the date functions 962 | ; http://php.net/date.timezone 963 | ;date.timezone = 964 | 965 | ; http://php.net/date.default-latitude 966 | ;date.default_latitude = 31.7667 967 | 968 | ; http://php.net/date.default-longitude 969 | ;date.default_longitude = 35.2333 970 | 971 | ; http://php.net/date.sunrise-zenith 972 | ;date.sunrise_zenith = 90.583333 973 | 974 | ; http://php.net/date.sunset-zenith 975 | ;date.sunset_zenith = 90.583333 976 | 977 | [filter] 978 | ; http://php.net/filter.default 979 | ;filter.default = unsafe_raw 980 | 981 | ; http://php.net/filter.default-flags 982 | ;filter.default_flags = 983 | 984 | [iconv] 985 | ; Use of this INI entry is deprecated, use global input_encoding instead. 986 | ; If empty, default_charset or input_encoding or iconv.input_encoding is used. 987 | ; The precedence is: default_charset < input_encoding < iconv.input_encoding 988 | ;iconv.input_encoding = 989 | 990 | ; Use of this INI entry is deprecated, use global internal_encoding instead. 991 | ; If empty, default_charset or internal_encoding or iconv.internal_encoding is used. 992 | ; The precedence is: default_charset < internal_encoding < iconv.internal_encoding 993 | ;iconv.internal_encoding = 994 | 995 | ; Use of this INI entry is deprecated, use global output_encoding instead. 996 | ; If empty, default_charset or output_encoding or iconv.output_encoding is used. 997 | ; The precedence is: default_charset < output_encoding < iconv.output_encoding 998 | ; To use an output encoding conversion, iconv's output handler must be set 999 | ; otherwise output encoding conversion cannot be performed. 1000 | ;iconv.output_encoding = 1001 | 1002 | [imap] 1003 | ; rsh/ssh logins are disabled by default. Use this INI entry if you want to 1004 | ; enable them. Note that the IMAP library does not filter mailbox names before 1005 | ; passing them to rsh/ssh command, thus passing untrusted data to this function 1006 | ; with rsh/ssh enabled is insecure. 1007 | ;imap.enable_insecure_rsh=0 1008 | 1009 | [intl] 1010 | ;intl.default_locale = 1011 | ; This directive allows you to produce PHP errors when some error 1012 | ; happens within intl functions. The value is the level of the error produced. 1013 | ; Default is 0, which does not produce any errors. 1014 | ;intl.error_level = E_WARNING 1015 | ;intl.use_exceptions = 0 1016 | 1017 | [sqlite3] 1018 | ; Directory pointing to SQLite3 extensions 1019 | ; http://php.net/sqlite3.extension-dir 1020 | ;sqlite3.extension_dir = 1021 | 1022 | ; SQLite defensive mode flag (only available from SQLite 3.26+) 1023 | ; When the defensive flag is enabled, language features that allow ordinary 1024 | ; SQL to deliberately corrupt the database file are disabled. This forbids 1025 | ; writing directly to the schema, shadow tables (eg. FTS data tables), or 1026 | ; the sqlite_dbpage virtual table. 1027 | ; https://www.sqlite.org/c3ref/c_dbconfig_defensive.html 1028 | ; (for older SQLite versions, this flag has no use) 1029 | ;sqlite3.defensive = 1 1030 | 1031 | [Pcre] 1032 | ; PCRE library backtracking limit. 1033 | ; http://php.net/pcre.backtrack-limit 1034 | ;pcre.backtrack_limit=100000 1035 | 1036 | ; PCRE library recursion limit. 1037 | ; Please note that if you set this value to a high number you may consume all 1038 | ; the available process stack and eventually crash PHP (due to reaching the 1039 | ; stack size limit imposed by the Operating System). 1040 | ; http://php.net/pcre.recursion-limit 1041 | ;pcre.recursion_limit=100000 1042 | 1043 | ; Enables or disables JIT compilation of patterns. This requires the PCRE 1044 | ; library to be compiled with JIT support. 1045 | pcre.jit=1 1046 | 1047 | [Pdo] 1048 | ; Whether to pool ODBC connections. Can be one of "strict", "relaxed" or "off" 1049 | ; http://php.net/pdo-odbc.connection-pooling 1050 | ;pdo_odbc.connection_pooling=strict 1051 | 1052 | ;pdo_odbc.db2_instance_name 1053 | 1054 | [Pdo_mysql] 1055 | ; Default socket name for local MySQL connects. If empty, uses the built-in 1056 | ; MySQL defaults. 1057 | pdo_mysql.default_socket= 1058 | 1059 | [Phar] 1060 | ; http://php.net/phar.readonly 1061 | ;phar.readonly = On 1062 | 1063 | ; http://php.net/phar.require-hash 1064 | ;phar.require_hash = On 1065 | 1066 | ;phar.cache_list = 1067 | 1068 | [mail function] 1069 | ; For Win32 only. 1070 | ; http://php.net/smtp 1071 | SMTP = localhost 1072 | ; http://php.net/smtp-port 1073 | smtp_port = 25 1074 | 1075 | ; For Win32 only. 1076 | ; http://php.net/sendmail-from 1077 | ;sendmail_from = me@example.com 1078 | 1079 | ; For Unix only. You may supply arguments as well (default: "sendmail -t -i"). 1080 | ; http://php.net/sendmail-path 1081 | ;sendmail_path = 1082 | 1083 | ; Force the addition of the specified parameters to be passed as extra parameters 1084 | ; to the sendmail binary. These parameters will always replace the value of 1085 | ; the 5th parameter to mail(). 1086 | ;mail.force_extra_parameters = 1087 | 1088 | ; Add X-PHP-Originating-Script: that will include uid of the script followed by the filename 1089 | mail.add_x_header = Off 1090 | 1091 | ; The path to a log file that will log all mail() calls. Log entries include 1092 | ; the full path of the script, line number, To address and headers. 1093 | ;mail.log = 1094 | ; Log mail to syslog (Event Log on Windows). 1095 | ;mail.log = syslog 1096 | 1097 | [ODBC] 1098 | ; http://php.net/odbc.default-db 1099 | ;odbc.default_db = Not yet implemented 1100 | 1101 | ; http://php.net/odbc.default-user 1102 | ;odbc.default_user = Not yet implemented 1103 | 1104 | ; http://php.net/odbc.default-pw 1105 | ;odbc.default_pw = Not yet implemented 1106 | 1107 | ; Controls the ODBC cursor model. 1108 | ; Default: SQL_CURSOR_STATIC (default). 1109 | ;odbc.default_cursortype 1110 | 1111 | ; Allow or prevent persistent links. 1112 | ; http://php.net/odbc.allow-persistent 1113 | odbc.allow_persistent = On 1114 | 1115 | ; Check that a connection is still valid before reuse. 1116 | ; http://php.net/odbc.check-persistent 1117 | odbc.check_persistent = On 1118 | 1119 | ; Maximum number of persistent links. -1 means no limit. 1120 | ; http://php.net/odbc.max-persistent 1121 | odbc.max_persistent = -1 1122 | 1123 | ; Maximum number of links (persistent + non-persistent). -1 means no limit. 1124 | ; http://php.net/odbc.max-links 1125 | odbc.max_links = -1 1126 | 1127 | ; Handling of LONG fields. Returns number of bytes to variables. 0 means 1128 | ; passthru. 1129 | ; http://php.net/odbc.defaultlrl 1130 | odbc.defaultlrl = 4096 1131 | 1132 | ; Handling of binary data. 0 means passthru, 1 return as is, 2 convert to char. 1133 | ; See the documentation on odbc_binmode and odbc_longreadlen for an explanation 1134 | ; of odbc.defaultlrl and odbc.defaultbinmode 1135 | ; http://php.net/odbc.defaultbinmode 1136 | odbc.defaultbinmode = 1 1137 | 1138 | [MySQLi] 1139 | 1140 | ; Maximum number of persistent links. -1 means no limit. 1141 | ; http://php.net/mysqli.max-persistent 1142 | mysqli.max_persistent = -1 1143 | 1144 | ; Allow accessing, from PHP's perspective, local files with LOAD DATA statements 1145 | ; http://php.net/mysqli.allow_local_infile 1146 | ;mysqli.allow_local_infile = On 1147 | 1148 | ; Allow or prevent persistent links. 1149 | ; http://php.net/mysqli.allow-persistent 1150 | mysqli.allow_persistent = On 1151 | 1152 | ; Maximum number of links. -1 means no limit. 1153 | ; http://php.net/mysqli.max-links 1154 | mysqli.max_links = -1 1155 | 1156 | ; Default port number for mysqli_connect(). If unset, mysqli_connect() will use 1157 | ; the $MYSQL_TCP_PORT or the mysql-tcp entry in /etc/services or the 1158 | ; compile-time value defined MYSQL_PORT (in that order). Win32 will only look 1159 | ; at MYSQL_PORT. 1160 | ; http://php.net/mysqli.default-port 1161 | mysqli.default_port = 3306 1162 | 1163 | ; Default socket name for local MySQL connects. If empty, uses the built-in 1164 | ; MySQL defaults. 1165 | ; http://php.net/mysqli.default-socket 1166 | mysqli.default_socket = /var/run/mysqld/mysqld.sock 1167 | 1168 | ; Default host for mysqli_connect() (doesn't apply in safe mode). 1169 | ; http://php.net/mysqli.default-host 1170 | mysqli.default_host = 1171 | 1172 | ; Default user for mysqli_connect() (doesn't apply in safe mode). 1173 | ; http://php.net/mysqli.default-user 1174 | mysqli.default_user = 1175 | 1176 | ; Default password for mysqli_connect() (doesn't apply in safe mode). 1177 | ; Note that this is generally a *bad* idea to store passwords in this file. 1178 | ; *Any* user with PHP access can run 'echo get_cfg_var("mysqli.default_pw") 1179 | ; and reveal this password! And of course, any users with read access to this 1180 | ; file will be able to reveal the password as well. 1181 | ; http://php.net/mysqli.default-pw 1182 | mysqli.default_pw = 1183 | 1184 | ; Allow or prevent reconnect 1185 | mysqli.reconnect = Off 1186 | 1187 | [mysqlnd] 1188 | ; Enable / Disable collection of general statistics by mysqlnd which can be 1189 | ; used to tune and monitor MySQL operations. 1190 | mysqlnd.collect_statistics = On 1191 | 1192 | ; Enable / Disable collection of memory usage statistics by mysqlnd which can be 1193 | ; used to tune and monitor MySQL operations. 1194 | mysqlnd.collect_memory_statistics = Off 1195 | 1196 | ; Records communication from all extensions using mysqlnd to the specified log 1197 | ; file. 1198 | ; http://php.net/mysqlnd.debug 1199 | ;mysqlnd.debug = 1200 | 1201 | ; Defines which queries will be logged. 1202 | ;mysqlnd.log_mask = 0 1203 | 1204 | ; Default size of the mysqlnd memory pool, which is used by result sets. 1205 | ;mysqlnd.mempool_default_size = 16000 1206 | 1207 | ; Size of a pre-allocated buffer used when sending commands to MySQL in bytes. 1208 | ;mysqlnd.net_cmd_buffer_size = 2048 1209 | 1210 | ; Size of a pre-allocated buffer used for reading data sent by the server in 1211 | ; bytes. 1212 | ;mysqlnd.net_read_buffer_size = 32768 1213 | 1214 | ; Timeout for network requests in seconds. 1215 | ;mysqlnd.net_read_timeout = 31536000 1216 | 1217 | ; SHA-256 Authentication Plugin related. File with the MySQL server public RSA 1218 | ; key. 1219 | ;mysqlnd.sha256_server_public_key = 1220 | 1221 | [OCI8] 1222 | 1223 | ; Connection: Enables privileged connections using external 1224 | ; credentials (OCI_SYSOPER, OCI_SYSDBA) 1225 | ; http://php.net/oci8.privileged-connect 1226 | ;oci8.privileged_connect = Off 1227 | 1228 | ; Connection: The maximum number of persistent OCI8 connections per 1229 | ; process. Using -1 means no limit. 1230 | ; http://php.net/oci8.max-persistent 1231 | ;oci8.max_persistent = -1 1232 | 1233 | ; Connection: The maximum number of seconds a process is allowed to 1234 | ; maintain an idle persistent connection. Using -1 means idle 1235 | ; persistent connections will be maintained forever. 1236 | ; http://php.net/oci8.persistent-timeout 1237 | ;oci8.persistent_timeout = -1 1238 | 1239 | ; Connection: The number of seconds that must pass before issuing a 1240 | ; ping during oci_pconnect() to check the connection validity. When 1241 | ; set to 0, each oci_pconnect() will cause a ping. Using -1 disables 1242 | ; pings completely. 1243 | ; http://php.net/oci8.ping-interval 1244 | ;oci8.ping_interval = 60 1245 | 1246 | ; Connection: Set this to a user chosen connection class to be used 1247 | ; for all pooled server requests with Oracle 11g Database Resident 1248 | ; Connection Pooling (DRCP). To use DRCP, this value should be set to 1249 | ; the same string for all web servers running the same application, 1250 | ; the database pool must be configured, and the connection string must 1251 | ; specify to use a pooled server. 1252 | ;oci8.connection_class = 1253 | 1254 | ; High Availability: Using On lets PHP receive Fast Application 1255 | ; Notification (FAN) events generated when a database node fails. The 1256 | ; database must also be configured to post FAN events. 1257 | ;oci8.events = Off 1258 | 1259 | ; Tuning: This option enables statement caching, and specifies how 1260 | ; many statements to cache. Using 0 disables statement caching. 1261 | ; http://php.net/oci8.statement-cache-size 1262 | ;oci8.statement_cache_size = 20 1263 | 1264 | ; Tuning: Enables statement prefetching and sets the default number of 1265 | ; rows that will be fetched automatically after statement execution. 1266 | ; http://php.net/oci8.default-prefetch 1267 | ;oci8.default_prefetch = 100 1268 | 1269 | ; Compatibility. Using On means oci_close() will not close 1270 | ; oci_connect() and oci_new_connect() connections. 1271 | ; http://php.net/oci8.old-oci-close-semantics 1272 | ;oci8.old_oci_close_semantics = Off 1273 | 1274 | [PostgreSQL] 1275 | ; Allow or prevent persistent links. 1276 | ; http://php.net/pgsql.allow-persistent 1277 | pgsql.allow_persistent = On 1278 | 1279 | ; Detect broken persistent links always with pg_pconnect(). 1280 | ; Auto reset feature requires a little overheads. 1281 | ; http://php.net/pgsql.auto-reset-persistent 1282 | pgsql.auto_reset_persistent = Off 1283 | 1284 | ; Maximum number of persistent links. -1 means no limit. 1285 | ; http://php.net/pgsql.max-persistent 1286 | pgsql.max_persistent = -1 1287 | 1288 | ; Maximum number of links (persistent+non persistent). -1 means no limit. 1289 | ; http://php.net/pgsql.max-links 1290 | pgsql.max_links = -1 1291 | 1292 | ; Ignore PostgreSQL backends Notice message or not. 1293 | ; Notice message logging require a little overheads. 1294 | ; http://php.net/pgsql.ignore-notice 1295 | pgsql.ignore_notice = 0 1296 | 1297 | ; Log PostgreSQL backends Notice message or not. 1298 | ; Unless pgsql.ignore_notice=0, module cannot log notice message. 1299 | ; http://php.net/pgsql.log-notice 1300 | pgsql.log_notice = 0 1301 | 1302 | [bcmath] 1303 | ; Number of decimal digits for all bcmath functions. 1304 | ; http://php.net/bcmath.scale 1305 | bcmath.scale = 0 1306 | 1307 | [browscap] 1308 | ; http://php.net/browscap 1309 | ;browscap = extra/browscap.ini 1310 | 1311 | [Session] 1312 | ; Handler used to store/retrieve data. 1313 | ; http://php.net/session.save-handler 1314 | session.save_handler = files 1315 | 1316 | ; Argument passed to save_handler. In the case of files, this is the path 1317 | ; where data files are stored. Note: Windows users have to change this 1318 | ; variable in order to use PHP's session functions. 1319 | ; 1320 | ; The path can be defined as: 1321 | ; 1322 | ; session.save_path = "N;/path" 1323 | ; 1324 | ; where N is an integer. Instead of storing all the session files in 1325 | ; /path, what this will do is use subdirectories N-levels deep, and 1326 | ; store the session data in those directories. This is useful if 1327 | ; your OS has problems with many files in one directory, and is 1328 | ; a more efficient layout for servers that handle many sessions. 1329 | ; 1330 | ; NOTE 1: PHP will not create this directory structure automatically. 1331 | ; You can use the script in the ext/session dir for that purpose. 1332 | ; NOTE 2: See the section on garbage collection below if you choose to 1333 | ; use subdirectories for session storage 1334 | ; 1335 | ; The file storage module creates files using mode 600 by default. 1336 | ; You can change that by using 1337 | ; 1338 | ; session.save_path = "N;MODE;/path" 1339 | ; 1340 | ; where MODE is the octal representation of the mode. Note that this 1341 | ; does not overwrite the process's umask. 1342 | ; http://php.net/session.save-path 1343 | ;session.save_path = "/tmp" 1344 | 1345 | ; Whether to use strict session mode. 1346 | ; Strict session mode does not accept an uninitialized session ID, and 1347 | ; regenerates the session ID if the browser sends an uninitialized session ID. 1348 | ; Strict mode protects applications from session fixation via a session adoption 1349 | ; vulnerability. It is disabled by default for maximum compatibility, but 1350 | ; enabling it is encouraged. 1351 | ; https://wiki.php.net/rfc/strict_sessions 1352 | session.use_strict_mode = 0 1353 | 1354 | ; Whether to use cookies. 1355 | ; http://php.net/session.use-cookies 1356 | session.use_cookies = 1 1357 | 1358 | ; http://php.net/session.cookie-secure 1359 | ;session.cookie_secure = 1360 | 1361 | ; This option forces PHP to fetch and use a cookie for storing and maintaining 1362 | ; the session id. We encourage this operation as it's very helpful in combating 1363 | ; session hijacking when not specifying and managing your own session id. It is 1364 | ; not the be-all and end-all of session hijacking defense, but it's a good start. 1365 | ; http://php.net/session.use-only-cookies 1366 | session.use_only_cookies = 1 1367 | 1368 | ; Name of the session (used as cookie name). 1369 | ; http://php.net/session.name 1370 | session.name = PHPSESSID 1371 | 1372 | ; Initialize session on request startup. 1373 | ; http://php.net/session.auto-start 1374 | session.auto_start = 0 1375 | 1376 | ; Lifetime in seconds of cookie or, if 0, until browser is restarted. 1377 | ; http://php.net/session.cookie-lifetime 1378 | session.cookie_lifetime = 0 1379 | 1380 | ; The path for which the cookie is valid. 1381 | ; http://php.net/session.cookie-path 1382 | session.cookie_path = / 1383 | 1384 | ; The domain for which the cookie is valid. 1385 | ; http://php.net/session.cookie-domain 1386 | session.cookie_domain = 1387 | 1388 | ; Whether or not to add the httpOnly flag to the cookie, which makes it 1389 | ; inaccessible to browser scripting languages such as JavaScript. 1390 | ; http://php.net/session.cookie-httponly 1391 | session.cookie_httponly = 1392 | 1393 | ; Add SameSite attribute to cookie to help mitigate Cross-Site Request Forgery (CSRF/XSRF) 1394 | ; Current valid values are "Lax" or "Strict" 1395 | ; https://tools.ietf.org/html/draft-west-first-party-cookies-07 1396 | session.cookie_samesite = 1397 | 1398 | ; Handler used to serialize data. php is the standard serializer of PHP. 1399 | ; http://php.net/session.serialize-handler 1400 | session.serialize_handler = php 1401 | 1402 | ; Defines the probability that the 'garbage collection' process is started on every 1403 | ; session initialization. The probability is calculated by using gc_probability/gc_divisor, 1404 | ; e.g. 1/100 means there is a 1% chance that the GC process starts on each request. 1405 | ; Default Value: 1 1406 | ; Development Value: 1 1407 | ; Production Value: 1 1408 | ; http://php.net/session.gc-probability 1409 | session.gc_probability = 0 1410 | 1411 | ; Defines the probability that the 'garbage collection' process is started on every 1412 | ; session initialization. The probability is calculated by using gc_probability/gc_divisor, 1413 | ; e.g. 1/100 means there is a 1% chance that the GC process starts on each request. 1414 | ; For high volume production servers, using a value of 1000 is a more efficient approach. 1415 | ; Default Value: 100 1416 | ; Development Value: 1000 1417 | ; Production Value: 1000 1418 | ; http://php.net/session.gc-divisor 1419 | session.gc_divisor = 1000 1420 | 1421 | ; After this number of seconds, stored data will be seen as 'garbage' and 1422 | ; cleaned up by the garbage collection process. 1423 | ; http://php.net/session.gc-maxlifetime 1424 | session.gc_maxlifetime = 1440 1425 | 1426 | ; NOTE: If you are using the subdirectory option for storing session files 1427 | ; (see session.save_path above), then garbage collection does *not* 1428 | ; happen automatically. You will need to do your own garbage 1429 | ; collection through a shell script, cron entry, or some other method. 1430 | ; For example, the following script would is the equivalent of 1431 | ; setting session.gc_maxlifetime to 1440 (1440 seconds = 24 minutes): 1432 | ; find /path/to/sessions -cmin +24 -type f | xargs rm 1433 | 1434 | ; Check HTTP Referer to invalidate externally stored URLs containing ids. 1435 | ; HTTP_REFERER has to contain this substring for the session to be 1436 | ; considered as valid. 1437 | ; http://php.net/session.referer-check 1438 | session.referer_check = 1439 | 1440 | ; Set to {nocache,private,public,} to determine HTTP caching aspects 1441 | ; or leave this empty to avoid sending anti-caching headers. 1442 | ; http://php.net/session.cache-limiter 1443 | session.cache_limiter = nocache 1444 | 1445 | ; Document expires after n minutes. 1446 | ; http://php.net/session.cache-expire 1447 | session.cache_expire = 180 1448 | 1449 | ; trans sid support is disabled by default. 1450 | ; Use of trans sid may risk your users' security. 1451 | ; Use this option with caution. 1452 | ; - User may send URL contains active session ID 1453 | ; to other person via. email/irc/etc. 1454 | ; - URL that contains active session ID may be stored 1455 | ; in publicly accessible computer. 1456 | ; - User may access your site with the same session ID 1457 | ; always using URL stored in browser's history or bookmarks. 1458 | ; http://php.net/session.use-trans-sid 1459 | session.use_trans_sid = 0 1460 | 1461 | ; Set session ID character length. This value could be between 22 to 256. 1462 | ; Shorter length than default is supported only for compatibility reason. 1463 | ; Users should use 32 or more chars. 1464 | ; http://php.net/session.sid-length 1465 | ; Default Value: 32 1466 | ; Development Value: 26 1467 | ; Production Value: 26 1468 | session.sid_length = 26 1469 | 1470 | ; The URL rewriter will look for URLs in a defined set of HTML tags. 1471 | ;
is special; if you include them here, the rewriter will 1472 | ; add a hidden field with the info which is otherwise appended 1473 | ; to URLs. tag's action attribute URL will not be modified 1474 | ; unless it is specified. 1475 | ; Note that all valid entries require a "=", even if no value follows. 1476 | ; Default Value: "a=href,area=href,frame=src,form=" 1477 | ; Development Value: "a=href,area=href,frame=src,form=" 1478 | ; Production Value: "a=href,area=href,frame=src,form=" 1479 | ; http://php.net/url-rewriter.tags 1480 | session.trans_sid_tags = "a=href,area=href,frame=src,form=" 1481 | 1482 | ; URL rewriter does not rewrite absolute URLs by default. 1483 | ; To enable rewrites for absolute paths, target hosts must be specified 1484 | ; at RUNTIME. i.e. use ini_set() 1485 | ; tags is special. PHP will check action attribute's URL regardless 1486 | ; of session.trans_sid_tags setting. 1487 | ; If no host is defined, HTTP_HOST will be used for allowed host. 1488 | ; Example value: php.net,www.php.net,wiki.php.net 1489 | ; Use "," for multiple hosts. No spaces are allowed. 1490 | ; Default Value: "" 1491 | ; Development Value: "" 1492 | ; Production Value: "" 1493 | ;session.trans_sid_hosts="" 1494 | 1495 | ; Define how many bits are stored in each character when converting 1496 | ; the binary hash data to something readable. 1497 | ; Possible values: 1498 | ; 4 (4 bits: 0-9, a-f) 1499 | ; 5 (5 bits: 0-9, a-v) 1500 | ; 6 (6 bits: 0-9, a-z, A-Z, "-", ",") 1501 | ; Default Value: 4 1502 | ; Development Value: 5 1503 | ; Production Value: 5 1504 | ; http://php.net/session.hash-bits-per-character 1505 | session.sid_bits_per_character = 5 1506 | 1507 | ; Enable upload progress tracking in $_SESSION 1508 | ; Default Value: On 1509 | ; Development Value: On 1510 | ; Production Value: On 1511 | ; http://php.net/session.upload-progress.enabled 1512 | ;session.upload_progress.enabled = On 1513 | 1514 | ; Cleanup the progress information as soon as all POST data has been read 1515 | ; (i.e. upload completed). 1516 | ; Default Value: On 1517 | ; Development Value: On 1518 | ; Production Value: On 1519 | ; http://php.net/session.upload-progress.cleanup 1520 | ;session.upload_progress.cleanup = On 1521 | 1522 | ; A prefix used for the upload progress key in $_SESSION 1523 | ; Default Value: "upload_progress_" 1524 | ; Development Value: "upload_progress_" 1525 | ; Production Value: "upload_progress_" 1526 | ; http://php.net/session.upload-progress.prefix 1527 | ;session.upload_progress.prefix = "upload_progress_" 1528 | 1529 | ; The index name (concatenated with the prefix) in $_SESSION 1530 | ; containing the upload progress information 1531 | ; Default Value: "PHP_SESSION_UPLOAD_PROGRESS" 1532 | ; Development Value: "PHP_SESSION_UPLOAD_PROGRESS" 1533 | ; Production Value: "PHP_SESSION_UPLOAD_PROGRESS" 1534 | ; http://php.net/session.upload-progress.name 1535 | ;session.upload_progress.name = "PHP_SESSION_UPLOAD_PROGRESS" 1536 | 1537 | ; How frequently the upload progress should be updated. 1538 | ; Given either in percentages (per-file), or in bytes 1539 | ; Default Value: "1%" 1540 | ; Development Value: "1%" 1541 | ; Production Value: "1%" 1542 | ; http://php.net/session.upload-progress.freq 1543 | ;session.upload_progress.freq = "1%" 1544 | 1545 | ; The minimum delay between updates, in seconds 1546 | ; Default Value: 1 1547 | ; Development Value: 1 1548 | ; Production Value: 1 1549 | ; http://php.net/session.upload-progress.min-freq 1550 | ;session.upload_progress.min_freq = "1" 1551 | 1552 | ; Only write session data when session data is changed. Enabled by default. 1553 | ; http://php.net/session.lazy-write 1554 | ;session.lazy_write = On 1555 | 1556 | [Assertion] 1557 | ; Switch whether to compile assertions at all (to have no overhead at run-time) 1558 | ; -1: Do not compile at all 1559 | ; 0: Jump over assertion at run-time 1560 | ; 1: Execute assertions 1561 | ; Changing from or to a negative value is only possible in php.ini! (For turning assertions on and off at run-time, see assert.active, when zend.assertions = 1) 1562 | ; Default Value: 1 1563 | ; Development Value: 1 1564 | ; Production Value: -1 1565 | ; http://php.net/zend.assertions 1566 | zend.assertions = -1 1567 | 1568 | ; Assert(expr); active by default. 1569 | ; http://php.net/assert.active 1570 | ;assert.active = On 1571 | 1572 | ; Throw an AssertionError on failed assertions 1573 | ; http://php.net/assert.exception 1574 | ;assert.exception = On 1575 | 1576 | ; Issue a PHP warning for each failed assertion. (Overridden by assert.exception if active) 1577 | ; http://php.net/assert.warning 1578 | ;assert.warning = On 1579 | 1580 | ; Don't bail out by default. 1581 | ; http://php.net/assert.bail 1582 | ;assert.bail = Off 1583 | 1584 | ; User-function to be called if an assertion fails. 1585 | ; http://php.net/assert.callback 1586 | ;assert.callback = 0 1587 | 1588 | ; Eval the expression with current error_reporting(). Set to true if you want 1589 | ; error_reporting(0) around the eval(). 1590 | ; http://php.net/assert.quiet-eval 1591 | ;assert.quiet_eval = 0 1592 | 1593 | [COM] 1594 | ; path to a file containing GUIDs, IIDs or filenames of files with TypeLibs 1595 | ; http://php.net/com.typelib-file 1596 | ;com.typelib_file = 1597 | 1598 | ; allow Distributed-COM calls 1599 | ; http://php.net/com.allow-dcom 1600 | ;com.allow_dcom = true 1601 | 1602 | ; autoregister constants of a component's typlib on com_load() 1603 | ; http://php.net/com.autoregister-typelib 1604 | ;com.autoregister_typelib = true 1605 | 1606 | ; register constants casesensitive 1607 | ; http://php.net/com.autoregister-casesensitive 1608 | ;com.autoregister_casesensitive = false 1609 | 1610 | ; show warnings on duplicate constant registrations 1611 | ; http://php.net/com.autoregister-verbose 1612 | ;com.autoregister_verbose = true 1613 | 1614 | ; The default character set code-page to use when passing strings to and from COM objects. 1615 | ; Default: system ANSI code page 1616 | ;com.code_page= 1617 | 1618 | [mbstring] 1619 | ; language for internal character representation. 1620 | ; This affects mb_send_mail() and mbstring.detect_order. 1621 | ; http://php.net/mbstring.language 1622 | ;mbstring.language = Japanese 1623 | 1624 | ; Use of this INI entry is deprecated, use global internal_encoding instead. 1625 | ; internal/script encoding. 1626 | ; Some encoding cannot work as internal encoding. (e.g. SJIS, BIG5, ISO-2022-*) 1627 | ; If empty, default_charset or internal_encoding or iconv.internal_encoding is used. 1628 | ; The precedence is: default_charset < internal_encoding < iconv.internal_encoding 1629 | ;mbstring.internal_encoding = 1630 | 1631 | ; Use of this INI entry is deprecated, use global input_encoding instead. 1632 | ; http input encoding. 1633 | ; mbstring.encoding_translation = On is needed to use this setting. 1634 | ; If empty, default_charset or input_encoding or mbstring.input is used. 1635 | ; The precedence is: default_charset < input_encoding < mbsting.http_input 1636 | ; http://php.net/mbstring.http-input 1637 | ;mbstring.http_input = 1638 | 1639 | ; Use of this INI entry is deprecated, use global output_encoding instead. 1640 | ; http output encoding. 1641 | ; mb_output_handler must be registered as output buffer to function. 1642 | ; If empty, default_charset or output_encoding or mbstring.http_output is used. 1643 | ; The precedence is: default_charset < output_encoding < mbstring.http_output 1644 | ; To use an output encoding conversion, mbstring's output handler must be set 1645 | ; otherwise output encoding conversion cannot be performed. 1646 | ; http://php.net/mbstring.http-output 1647 | ;mbstring.http_output = 1648 | 1649 | ; enable automatic encoding translation according to 1650 | ; mbstring.internal_encoding setting. Input chars are 1651 | ; converted to internal encoding by setting this to On. 1652 | ; Note: Do _not_ use automatic encoding translation for 1653 | ; portable libs/applications. 1654 | ; http://php.net/mbstring.encoding-translation 1655 | ;mbstring.encoding_translation = Off 1656 | 1657 | ; automatic encoding detection order. 1658 | ; "auto" detect order is changed according to mbstring.language 1659 | ; http://php.net/mbstring.detect-order 1660 | ;mbstring.detect_order = auto 1661 | 1662 | ; substitute_character used when character cannot be converted 1663 | ; one from another 1664 | ; http://php.net/mbstring.substitute-character 1665 | ;mbstring.substitute_character = none 1666 | 1667 | ; overload(replace) single byte functions by mbstring functions. 1668 | ; mail(), ereg(), etc are overloaded by mb_send_mail(), mb_ereg(), 1669 | ; etc. Possible values are 0,1,2,4 or combination of them. 1670 | ; For example, 7 for overload everything. 1671 | ; 0: No overload 1672 | ; 1: Overload mail() function 1673 | ; 2: Overload str*() functions 1674 | ; 4: Overload ereg*() functions 1675 | ; http://php.net/mbstring.func-overload 1676 | ;mbstring.func_overload = 0 1677 | 1678 | ; enable strict encoding detection. 1679 | ; Default: Off 1680 | ;mbstring.strict_detection = On 1681 | 1682 | ; This directive specifies the regex pattern of content types for which mb_output_handler() 1683 | ; is activated. 1684 | ; Default: mbstring.http_output_conv_mimetype=^(text/|application/xhtml\+xml) 1685 | ;mbstring.http_output_conv_mimetype= 1686 | 1687 | ; This directive specifies maximum stack depth for mbstring regular expressions. It is similar 1688 | ; to the pcre.recursion_limit for PCRE. 1689 | ; Default: 100000 1690 | ;mbstring.regex_stack_limit=100000 1691 | 1692 | ; This directive specifies maximum retry count for mbstring regular expressions. It is similar 1693 | ; to the pcre.backtrack_limit for PCRE. 1694 | ; Default: 1000000 1695 | ;mbstring.regex_retry_limit=1000000 1696 | 1697 | [gd] 1698 | ; Tell the jpeg decode to ignore warnings and try to create 1699 | ; a gd image. The warning will then be displayed as notices 1700 | ; disabled by default 1701 | ; http://php.net/gd.jpeg-ignore-warning 1702 | ;gd.jpeg_ignore_warning = 1 1703 | 1704 | [exif] 1705 | ; Exif UNICODE user comments are handled as UCS-2BE/UCS-2LE and JIS as JIS. 1706 | ; With mbstring support this will automatically be converted into the encoding 1707 | ; given by corresponding encode setting. When empty mbstring.internal_encoding 1708 | ; is used. For the decode settings you can distinguish between motorola and 1709 | ; intel byte order. A decode setting cannot be empty. 1710 | ; http://php.net/exif.encode-unicode 1711 | ;exif.encode_unicode = ISO-8859-15 1712 | 1713 | ; http://php.net/exif.decode-unicode-motorola 1714 | ;exif.decode_unicode_motorola = UCS-2BE 1715 | 1716 | ; http://php.net/exif.decode-unicode-intel 1717 | ;exif.decode_unicode_intel = UCS-2LE 1718 | 1719 | ; http://php.net/exif.encode-jis 1720 | ;exif.encode_jis = 1721 | 1722 | ; http://php.net/exif.decode-jis-motorola 1723 | ;exif.decode_jis_motorola = JIS 1724 | 1725 | ; http://php.net/exif.decode-jis-intel 1726 | ;exif.decode_jis_intel = JIS 1727 | 1728 | [Tidy] 1729 | ; The path to a default tidy configuration file to use when using tidy 1730 | ; http://php.net/tidy.default-config 1731 | ;tidy.default_config = /usr/local/lib/php/default.tcfg 1732 | 1733 | ; Should tidy clean and repair output automatically? 1734 | ; WARNING: Do not use this option if you are generating non-html content 1735 | ; such as dynamic images 1736 | ; http://php.net/tidy.clean-output 1737 | tidy.clean_output = Off 1738 | 1739 | [soap] 1740 | ; Enables or disables WSDL caching feature. 1741 | ; http://php.net/soap.wsdl-cache-enabled 1742 | soap.wsdl_cache_enabled=1 1743 | 1744 | ; Sets the directory name where SOAP extension will put cache files. 1745 | ; http://php.net/soap.wsdl-cache-dir 1746 | soap.wsdl_cache_dir="/tmp" 1747 | 1748 | ; (time to live) Sets the number of second while cached file will be used 1749 | ; instead of original one. 1750 | ; http://php.net/soap.wsdl-cache-ttl 1751 | soap.wsdl_cache_ttl=86400 1752 | 1753 | ; Sets the size of the cache limit. (Max. number of WSDL files to cache) 1754 | soap.wsdl_cache_limit = 5 1755 | 1756 | [sysvshm] 1757 | ; A default size of the shared memory segment 1758 | ;sysvshm.init_mem = 10000 1759 | 1760 | [ldap] 1761 | ; Sets the maximum number of open links or -1 for unlimited. 1762 | ldap.max_links = -1 1763 | 1764 | [dba] 1765 | ;dba.default_handler= 1766 | 1767 | [opcache] 1768 | ; Determines if Zend OPCache is enabled 1769 | ;opcache.enable=1 1770 | 1771 | ; Determines if Zend OPCache is enabled for the CLI version of PHP 1772 | ;opcache.enable_cli=0 1773 | 1774 | ; The OPcache shared memory storage size. 1775 | ;opcache.memory_consumption=128 1776 | 1777 | ; The amount of memory for interned strings in Mbytes. 1778 | ;opcache.interned_strings_buffer=8 1779 | 1780 | ; The maximum number of keys (scripts) in the OPcache hash table. 1781 | ; Only numbers between 200 and 1000000 are allowed. 1782 | ;opcache.max_accelerated_files=10000 1783 | 1784 | ; The maximum percentage of "wasted" memory until a restart is scheduled. 1785 | ;opcache.max_wasted_percentage=5 1786 | 1787 | ; When this directive is enabled, the OPcache appends the current working 1788 | ; directory to the script key, thus eliminating possible collisions between 1789 | ; files with the same name (basename). Disabling the directive improves 1790 | ; performance, but may break existing applications. 1791 | ;opcache.use_cwd=1 1792 | 1793 | ; When disabled, you must reset the OPcache manually or restart the 1794 | ; webserver for changes to the filesystem to take effect. 1795 | ;opcache.validate_timestamps=1 1796 | 1797 | ; How often (in seconds) to check file timestamps for changes to the shared 1798 | ; memory storage allocation. ("1" means validate once per second, but only 1799 | ; once per request. "0" means always validate) 1800 | ;opcache.revalidate_freq=2 1801 | 1802 | ; Enables or disables file search in include_path optimization 1803 | ;opcache.revalidate_path=0 1804 | 1805 | ; If disabled, all PHPDoc comments are dropped from the code to reduce the 1806 | ; size of the optimized code. 1807 | ;opcache.save_comments=1 1808 | 1809 | ; Allow file existence override (file_exists, etc.) performance feature. 1810 | ;opcache.enable_file_override=0 1811 | 1812 | ; A bitmask, where each bit enables or disables the appropriate OPcache 1813 | ; passes 1814 | ;opcache.optimization_level=0x7FFFBFFF 1815 | 1816 | ;opcache.dups_fix=0 1817 | 1818 | ; The location of the OPcache blacklist file (wildcards allowed). 1819 | ; Each OPcache blacklist file is a text file that holds the names of files 1820 | ; that should not be accelerated. The file format is to add each filename 1821 | ; to a new line. The filename may be a full path or just a file prefix 1822 | ; (i.e., /var/www/x blacklists all the files and directories in /var/www 1823 | ; that start with 'x'). Line starting with a ; are ignored (comments). 1824 | ;opcache.blacklist_filename= 1825 | 1826 | ; Allows exclusion of large files from being cached. By default all files 1827 | ; are cached. 1828 | ;opcache.max_file_size=0 1829 | 1830 | ; Check the cache checksum each N requests. 1831 | ; The default value of "0" means that the checks are disabled. 1832 | ;opcache.consistency_checks=0 1833 | 1834 | ; How long to wait (in seconds) for a scheduled restart to begin if the cache 1835 | ; is not being accessed. 1836 | ;opcache.force_restart_timeout=180 1837 | 1838 | ; OPcache error_log file name. Empty string assumes "stderr". 1839 | ;opcache.error_log= 1840 | 1841 | ; All OPcache errors go to the Web server log. 1842 | ; By default, only fatal errors (level 0) or errors (level 1) are logged. 1843 | ; You can also enable warnings (level 2), info messages (level 3) or 1844 | ; debug messages (level 4). 1845 | ;opcache.log_verbosity_level=1 1846 | 1847 | ; Preferred Shared Memory back-end. Leave empty and let the system decide. 1848 | ;opcache.preferred_memory_model= 1849 | 1850 | ; Protect the shared memory from unexpected writing during script execution. 1851 | ; Useful for internal debugging only. 1852 | ;opcache.protect_memory=0 1853 | 1854 | ; Allows calling OPcache API functions only from PHP scripts which path is 1855 | ; started from specified string. The default "" means no restriction 1856 | ;opcache.restrict_api= 1857 | 1858 | ; Mapping base of shared memory segments (for Windows only). All the PHP 1859 | ; processes have to map shared memory into the same address space. This 1860 | ; directive allows to manually fix the "Unable to reattach to base address" 1861 | ; errors. 1862 | ;opcache.mmap_base= 1863 | 1864 | ; Facilitates multiple OPcache instances per user (for Windows only). All PHP 1865 | ; processes with the same cache ID and user share an OPcache instance. 1866 | ;opcache.cache_id= 1867 | 1868 | ; Enables and sets the second level cache directory. 1869 | ; It should improve performance when SHM memory is full, at server restart or 1870 | ; SHM reset. The default "" disables file based caching. 1871 | ;opcache.file_cache= 1872 | 1873 | ; Enables or disables opcode caching in shared memory. 1874 | ;opcache.file_cache_only=0 1875 | 1876 | ; Enables or disables checksum validation when script loaded from file cache. 1877 | ;opcache.file_cache_consistency_checks=1 1878 | 1879 | ; Implies opcache.file_cache_only=1 for a certain process that failed to 1880 | ; reattach to the shared memory (for Windows only). Explicitly enabled file 1881 | ; cache is required. 1882 | ;opcache.file_cache_fallback=1 1883 | 1884 | ; Enables or disables copying of PHP code (text segment) into HUGE PAGES. 1885 | ; This should improve performance, but requires appropriate OS configuration. 1886 | ;opcache.huge_code_pages=1 1887 | 1888 | ; Validate cached file permissions. 1889 | ;opcache.validate_permission=0 1890 | 1891 | ; Prevent name collisions in chroot'ed environment. 1892 | ;opcache.validate_root=0 1893 | 1894 | ; If specified, it produces opcode dumps for debugging different stages of 1895 | ; optimizations. 1896 | ;opcache.opt_debug_level=0 1897 | 1898 | ; Specifies a PHP script that is going to be compiled and executed at server 1899 | ; start-up. 1900 | ; http://php.net/opcache.preload 1901 | ;opcache.preload= 1902 | 1903 | ; Preloading code as root is not allowed for security reasons. This directive 1904 | ; facilitates to let the preloading to be run as another user. 1905 | ; http://php.net/opcache.preload_user 1906 | ;opcache.preload_user= 1907 | 1908 | ; Prevents caching files that are less than this number of seconds old. It 1909 | ; protects from caching of incompletely updated files. In case all file updates 1910 | ; on your site are atomic, you may increase performance by setting it to "0". 1911 | ;opcache.file_update_protection=2 1912 | 1913 | ; Absolute path used to store shared lockfiles (for *nix only). 1914 | ;opcache.lockfile_path=/tmp 1915 | 1916 | [curl] 1917 | ; A default value for the CURLOPT_CAINFO option. This is required to be an 1918 | ; absolute path. 1919 | ;curl.cainfo = 1920 | 1921 | [openssl] 1922 | ; The location of a Certificate Authority (CA) file on the local filesystem 1923 | ; to use when verifying the identity of SSL/TLS peers. Most users should 1924 | ; not specify a value for this directive as PHP will attempt to use the 1925 | ; OS-managed cert stores in its absence. If specified, this value may still 1926 | ; be overridden on a per-stream basis via the "cafile" SSL stream context 1927 | ; option. 1928 | ;openssl.cafile= 1929 | 1930 | ; If openssl.cafile is not specified or if the CA file is not found, the 1931 | ; directory pointed to by openssl.capath is searched for a suitable 1932 | ; certificate. This value must be a correctly hashed certificate directory. 1933 | ; Most users should not specify a value for this directive as PHP will 1934 | ; attempt to use the OS-managed cert stores in its absence. If specified, 1935 | ; this value may still be overridden on a per-stream basis via the "capath" 1936 | ; SSL stream context option. 1937 | ;openssl.capath= 1938 | 1939 | [ffi] 1940 | ; FFI API restriction. Possible values: 1941 | ; "preload" - enabled in CLI scripts and preloaded files (default) 1942 | ; "false" - always disabled 1943 | ; "true" - always enabled 1944 | ;ffi.enable=preload 1945 | 1946 | ; List of headers files to preload, wildcard patterns allowed. 1947 | ;ffi.preload= 1948 | --------------------------------------------------------------------------------