├── LICENSE
├── README.md
├── includes
├── 030_php-fpm.conf
├── certbot.conf
├── httpd.conf
├── my.cnf
├── nextcloud.conf
├── php.ini
├── redis.conf
├── requirements.txt
├── root_my.cnf
├── www-crontab
└── www.conf
├── install.sh
├── install_docserver.sh
├── optional
├── fstab
└── showip.sh
├── pre-install.sh
└── sample.conf
/LICENSE:
--------------------------------------------------------------------------------
1 | BSD 3-Clause License
2 |
3 | Copyright (c) 2022, Gibran Khan
4 | All rights reserved.
5 |
6 | Redistribution and use in source and binary forms, with or without
7 | modification, are permitted provided that the following conditions are met:
8 |
9 | 1. Redistributions of source code must retain the above copyright notice, this
10 | list of conditions and the following disclaimer.
11 |
12 | 2. Redistributions in binary form must reproduce the above copyright notice,
13 | this list of conditions and the following disclaimer in the documentation
14 | and/or other materials provided with the distribution.
15 |
16 | 3. Neither the name of the copyright holder nor the names of its
17 | contributors may be used to endorse or promote products derived from
18 | this software without specific prior written permission.
19 |
20 | THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
21 | AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 | IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
23 | DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
24 | FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 | DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
26 | SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
27 | CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
28 | OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
29 | OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
30 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | # NextCloud on FreeBSD
2 |
3 | Script to automate installation of Nextcloud on FreeBSD14+ and HardenedBSD14+
4 | The finished installation passes all Nextcloud configuration checks.
5 | This script follows recommended configuration as per https://docs.nextcloud.com/server/stable/admin_manual/installation/system_requirements.html
6 |
7 | ## Requirements
8 |
9 | * Fresh install of FreeBSD 14+ / HardenedBSD 14+
10 | * Lib32 for integrated DocumentServer support (this is the plugin version)
11 | * ZFS. The pre-installer creates a new boot environment, which is not supported on UFS.
12 |
13 | ## Instructions
14 |
15 | 0. Read the instructions, and the scripts! :)
16 | 1. Clone repository or download release to your machine and extract.
17 | 2. `cd` to folder.
18 | 3. Switch to root by using `su`.
19 | 4. Run `pre_install.sh` as root to create a boot environment and config file before installing, then reboot before moving on.
20 | 5. `su` again after rebooting, and `cd` to the folder.
21 | 6. Open `install.conf` with your favourite editor.
22 | (Note: see https://www.php.net/manual/en/timezones.php for your time zone)
23 | 7. Change the values of variables as required to suite your environment.
24 | 8. Save the file.
25 | 9. Run `install.sh`
26 | 10. Please be patient while the script runs and drink your prefferred beverage.
27 | 11. Enjoy
28 |
29 | **Installs the following:**
30 |
31 | * Nextcloud 30
32 | * Apache 2.4
33 | * MariaDB 11.4
34 | * PHP 8.3 (plus all required php-extensions)
35 | * Redis
36 | * ClamAV
37 | * SSL Certificate (Let's Encrypt) using `certbot`
38 | * Plugin version of the OnlyOffice document server, as a seperate step
39 |
40 | ------------
41 |
42 | ## Configuration
43 |
44 | * Apache 2.4 + PHP using `php-fpm`
45 | * HTTP/2 over TLS
46 | * TLS1.3 only
47 | * HSTS enabled
48 | * APCu enabled
49 | * Redis enabled (allows transactional file locking)
50 |
51 | ### NextCloud Apps Installed/Activated by default in config
52 |
53 | * Antivirus for Files
54 | * Calendar
55 | * Contacts
56 | * Deck
57 | * Mail
58 | * Notes
59 | * Nextcloud Talk (Spreed)
60 | * Tasks
61 | * External storage support (including `samba` and `ftp`) (Can be disabled independently)
62 |
63 |
--------------------------------------------------------------------------------
/includes/030_php-fpm.conf:
--------------------------------------------------------------------------------
1 |
2 |
3 | DirectoryIndex index.php
4 |
5 |
6 | SetHandler "proxy:fcgi://127.0.0.1:9000"
7 |
8 |
9 |
--------------------------------------------------------------------------------
/includes/certbot.conf:
--------------------------------------------------------------------------------
1 |
2 | RewriteEngine on
3 | RewriteCond %{SERVER_NAME} =HOST_NAME
4 | RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
5 |
--------------------------------------------------------------------------------
/includes/httpd.conf:
--------------------------------------------------------------------------------
1 | ServerRoot "/usr/local"
2 |
3 | Listen LISTEN_PORT
4 |
5 | LoadModule mpm_event_module libexec/apache24/mod_mpm_event.so
6 | LoadModule authn_file_module libexec/apache24/mod_authn_file.so
7 | LoadModule authn_core_module libexec/apache24/mod_authn_core.so
8 | LoadModule authz_host_module libexec/apache24/mod_authz_host.so
9 | LoadModule authz_groupfile_module libexec/apache24/mod_authz_groupfile.so
10 | LoadModule authz_user_module libexec/apache24/mod_authz_user.so
11 | LoadModule authz_core_module libexec/apache24/mod_authz_core.so
12 | LoadModule access_compat_module libexec/apache24/mod_access_compat.so
13 | LoadModule auth_basic_module libexec/apache24/mod_auth_basic.so
14 | LoadModule reqtimeout_module libexec/apache24/mod_reqtimeout.so
15 | LoadModule filter_module libexec/apache24/mod_filter.so
16 | LoadModule mime_module libexec/apache24/mod_mime.so
17 | LoadModule log_config_module libexec/apache24/mod_log_config.so
18 | LoadModule env_module libexec/apache24/mod_env.so
19 | LoadModule headers_module libexec/apache24/mod_headers.so
20 | LoadModule setenvif_module libexec/apache24/mod_setenvif.so
21 | LoadModule version_module libexec/apache24/mod_version.so
22 | LoadModule proxy_module libexec/apache24/mod_proxy.so
23 | LoadModule proxy_fcgi_module libexec/apache24/mod_proxy_fcgi.so
24 | LoadModule ssl_module libexec/apache24/mod_ssl.so
25 | LoadModule http2_module libexec/apache24/mod_http2.so
26 | LoadModule unixd_module libexec/apache24/mod_unixd.so
27 | LoadModule status_module libexec/apache24/mod_status.so
28 | LoadModule autoindex_module libexec/apache24/mod_autoindex.so
29 | LoadModule dir_module libexec/apache24/mod_dir.so
30 | LoadModule alias_module libexec/apache24/mod_alias.so
31 | LoadModule rewrite_module libexec/apache24/mod_rewrite.so
32 | LoadModule socache_shmcb_module libexec/apache24/mod_socache_shmcb.so
33 |
34 |
35 |
36 | SetHandler php-script
37 |
38 | DirectoryIndex index.php
39 |
40 | IncludeOptional etc/apache24/modules.d/[0-9][0-9][0-9]_*.conf
41 |
42 |
43 | User www
44 | Group www
45 |
46 |
47 | ServerAdmin EMAIL_ADDRESS
48 |
49 | ServerName IP_ADDRESS
50 | SSL_OFF_Protocols h2
51 | SSL_OFF_H2Direct on
52 |
53 |
54 | AllowOverride none
55 | Require all denied
56 |
57 |
58 |
59 | DirectoryIndex index.html
60 |
61 |
62 |
63 | Require all denied
64 |
65 |
66 | ErrorLog "/var/log/httpd-error.log"
67 |
68 | LogLevel warn
69 |
70 |
71 |
72 | LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
73 | LogFormat "%h %l %u %t \"%r\" %>s %b" common
74 |
75 |
76 | LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
77 |
78 |
79 | CustomLog "/var/log/httpd-access.log" common
80 |
81 |
82 |
83 |
84 |
85 | ScriptAlias /cgi-bin/ "/usr/local/www/apache24/cgi-bin/"
86 |
87 |
88 |
89 |
90 | AllowOverride None
91 | Options None
92 | Require all granted
93 |
94 |
95 |
96 |
97 | RequestHeader unset Proxy early
98 |
99 |
100 |
101 |
102 |
103 | TypesConfig etc/apache24/mime.types
104 |
105 | AddType application/x-compress .Z
106 | AddType application/x-gzip .gz .tgz
107 |
108 | AddType application/x-httpd-php-source .phps
109 | AddType application/x-httpd-php .php
110 |
111 |
112 |
113 |
114 | Include etc/apache24/extra/proxy-html.conf
115 |
116 |
117 |
118 | SSLSessionCache "shmcb:/var/run/ssl_scache(512000)"
119 | SSLSessionCacheTimeout 300
120 | SSLRandomSeed startup builtin
121 | SSLRandomSeed connect builtin
122 |
123 |
124 | Include etc/apache24/Includes/*.conf
125 | Include etc/apache24/vhosts/*.conf
126 |
--------------------------------------------------------------------------------
/includes/my.cnf:
--------------------------------------------------------------------------------
1 | #
2 | # This group is read both by the client and the server
3 | # use it for options that affect everything, see
4 | # https://mariadb.com/kb/en/configuring-mariadb-with-option-files/#option-groups
5 | #
6 | [client-server]
7 | port=3306
8 | socket=/var/run/mysql/mysql.sock
9 |
10 | #
11 | # include *.cnf from the config directory
12 | #
13 | !includedir /usr/local/etc/mysql/conf.d/
14 |
15 | [server]
16 | innodb_buffer_pool_size=128M
17 | innodb_flush_log_at_trx_commit=2
18 | innodb_log_buffer_size=32M
19 | innodb_max_dirty_pages_pct=90
20 | innodb_use_native_aio=0
21 | innodb_use_atomic_writes=0
22 | query_cache_type=1
23 | query_cache_limit=2M
24 | query_cache_min_res_unit=2k
25 | query_cache_size=64M
26 | tmp_table_size=64M
27 | max_heap_table_size=64M
28 | slow_query_log=1
29 | slow_query_log_file=/var/log/mysql/slow.log
30 | long_query_time=1
31 |
32 | [client]
33 | default-character-set=utf8mb4
34 |
35 | [mysqld]
36 | character_set_server=utf8mb4
37 | collation_server=utf8mb4_general_ci
38 | transaction_isolation=READ-COMMITTED
39 | log_bin=1
40 | binlog_format=ROW
41 | innodb_file_per_table=1
42 | skip-innodb_doublewrite
43 |
--------------------------------------------------------------------------------
/includes/nextcloud.conf:
--------------------------------------------------------------------------------
1 |
2 | DocumentRoot WWW_DIR/HOST_NAME
3 | ServerName HOST_NAME
4 |
5 | SSL_OFF_Protocols h2
6 | SSL_OFF_H2Direct on
7 | SSL_OFF_SSLEngine on
8 | SSL_OFF_SSLProtocol -all +TLSv1.3
9 | SSL_OFF_SSLCertificateFile SSL_DIRECTORY/nextcloud.crt
10 | SSL_OFF_SSLCertificateKeyFile SSL_DIRECTORY/nextcloud.key
11 |
12 |
13 | Require all granted
14 | AllowOverride All
15 | Options FollowSymLinks MultiViews
16 |
17 | Dav off
18 |
19 |
20 | Header always set Strict-Transport-Security "max-age=15552000; includeSubDomains"
21 |
22 |
23 |
24 |
--------------------------------------------------------------------------------
/includes/php.ini:
--------------------------------------------------------------------------------
1 | [PHP]
2 |
3 | ;;;;;;;;;;;;;;;;;;;
4 | ; About php.ini ;
5 | ;;;;;;;;;;;;;;;;;;;
6 | ; PHP's initialization file, generally called php.ini, is responsible for
7 | ; configuring many of the aspects of PHP's behavior.
8 |
9 | ; PHP attempts to find and load this configuration from a number of locations.
10 | ; The following is a summary of its search order:
11 | ; 1. SAPI module specific location.
12 | ; 2. The PHPRC environment variable.
13 | ; 3. A number of predefined registry keys on Windows
14 | ; 4. Current working directory (except CLI)
15 | ; 5. The web server's directory (for SAPI modules), or directory of PHP
16 | ; (otherwise in Windows)
17 | ; 6. The directory from the --with-config-file-path compile time option, or the
18 | ; Windows directory (usually C:\windows)
19 | ; See the PHP docs for more specific information.
20 | ; https://php.net/configuration.file
21 |
22 | ; The syntax of the file is extremely simple. Whitespace and lines
23 | ; beginning with a semicolon are silently ignored (as you probably guessed).
24 | ; Section headers (e.g. [Foo]) are also silently ignored, even though
25 | ; they might mean something in the future.
26 |
27 | ; Directives following the section heading [PATH=/www/mysite] only
28 | ; apply to PHP files in the /www/mysite directory. Directives
29 | ; following the section heading [HOST=www.example.com] only apply to
30 | ; PHP files served from www.example.com. Directives set in these
31 | ; special sections cannot be overridden by user-defined INI files or
32 | ; at runtime. Currently, [PATH=] and [HOST=] sections only work under
33 | ; CGI/FastCGI.
34 | ; https://php.net/ini.sections
35 |
36 | ; Directives are specified using the following syntax:
37 | ; directive = value
38 | ; Directive names are *case sensitive* - foo=bar is different from FOO=bar.
39 | ; Directives are variables used to configure PHP or PHP extensions.
40 | ; There is no name validation. If PHP can't find an expected
41 | ; directive because it is not set or is mistyped, a default value will be used.
42 |
43 | ; The value can be a string, a number, a PHP constant (e.g. E_ALL or M_PI), one
44 | ; of the INI constants (On, Off, True, False, Yes, No and None) or an expression
45 | ; (e.g. E_ALL & ~E_NOTICE), a quoted string ("bar"), or a reference to a
46 | ; previously set variable or directive (e.g. ${foo})
47 |
48 | ; Expressions in the INI file are limited to bitwise operators and parentheses:
49 | ; | bitwise OR
50 | ; ^ bitwise XOR
51 | ; & bitwise AND
52 | ; ~ bitwise NOT
53 | ; ! boolean NOT
54 |
55 | ; Boolean flags can be turned on using the values 1, On, True or Yes.
56 | ; They can be turned off using the values 0, Off, False or No.
57 |
58 | ; An empty string can be denoted by simply not writing anything after the equal
59 | ; sign, or by using the None keyword:
60 |
61 | ; foo = ; sets foo to an empty string
62 | ; foo = None ; sets foo to an empty string
63 | ; foo = "None" ; sets foo to the string 'None'
64 |
65 | ; If you use constants in your value, and these constants belong to a
66 | ; dynamically loaded extension (either a PHP extension or a Zend extension),
67 | ; you may only use these constants *after* the line that loads the extension.
68 |
69 | ;;;;;;;;;;;;;;;;;;;
70 | ; About this file ;
71 | ;;;;;;;;;;;;;;;;;;;
72 | ; PHP comes packaged with two INI files. One that is recommended to be used
73 | ; in production environments and one that is recommended to be used in
74 | ; development environments.
75 |
76 | ; php.ini-production contains settings which hold security, performance and
77 | ; best practices at its core. But please be aware, these settings may break
78 | ; compatibility with older or less security conscience applications. We
79 | ; recommending using the production ini in production and testing environments.
80 |
81 | ; php.ini-development is very similar to its production variant, except it is
82 | ; much more verbose when it comes to errors. We recommend using the
83 | ; development version only in development environments, as errors shown to
84 | ; application users can inadvertently leak otherwise secure information.
85 |
86 | ; This is the php.ini-production INI file.
87 |
88 | ;;;;;;;;;;;;;;;;;;;
89 | ; Quick Reference ;
90 | ;;;;;;;;;;;;;;;;;;;
91 |
92 | ; The following are all the settings which are different in either the production
93 | ; or development versions of the INIs with respect to PHP's default behavior.
94 | ; Please see the actual settings later in the document for more details as to why
95 | ; we recommend these changes in PHP's behavior.
96 |
97 | ; display_errors
98 | ; Default Value: On
99 | ; Development Value: On
100 | ; Production Value: Off
101 |
102 | ; display_startup_errors
103 | ; Default Value: On
104 | ; Development Value: On
105 | ; Production Value: Off
106 |
107 | ; error_reporting
108 | ; Default Value: E_ALL
109 | ; Development Value: E_ALL
110 | ; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT
111 |
112 | ; log_errors
113 | ; Default Value: Off
114 | ; Development Value: On
115 | ; Production Value: On
116 |
117 | ; max_input_time
118 | ; Default Value: -1 (Unlimited)
119 | ; Development Value: 60 (60 seconds)
120 | ; Production Value: 60 (60 seconds)
121 |
122 | ; output_buffering
123 | ; Default Value: Off
124 | ; Development Value: 4096
125 | ; Production Value: 4096
126 |
127 | ; register_argc_argv
128 | ; Default Value: On
129 | ; Development Value: Off
130 | ; Production Value: Off
131 |
132 | ; request_order
133 | ; Default Value: None
134 | ; Development Value: "GP"
135 | ; Production Value: "GP"
136 |
137 | ; session.gc_divisor
138 | ; Default Value: 100
139 | ; Development Value: 1000
140 | ; Production Value: 1000
141 |
142 | ; session.sid_bits_per_character
143 | ; Default Value: 4
144 | ; Development Value: 5
145 | ; Production Value: 5
146 |
147 | ; short_open_tag
148 | ; Default Value: On
149 | ; Development Value: Off
150 | ; Production Value: Off
151 |
152 | ; variables_order
153 | ; Default Value: "EGPCS"
154 | ; Development Value: "GPCS"
155 | ; Production Value: "GPCS"
156 |
157 | ; zend.exception_ignore_args
158 | ; Default Value: Off
159 | ; Development Value: Off
160 | ; Production Value: On
161 |
162 | ; zend.exception_string_param_max_len
163 | ; Default Value: 15
164 | ; Development Value: 15
165 | ; Production Value: 0
166 |
167 | ;;;;;;;;;;;;;;;;;;;;
168 | ; php.ini Options ;
169 | ;;;;;;;;;;;;;;;;;;;;
170 | ; Name for user-defined php.ini (.htaccess) files. Default is ".user.ini"
171 | ;user_ini.filename = ".user.ini"
172 |
173 | ; To disable this feature set this option to an empty value
174 | ;user_ini.filename =
175 |
176 | ; TTL for user-defined php.ini files (time-to-live) in seconds. Default is 300 seconds (5 minutes)
177 | ;user_ini.cache_ttl = 300
178 |
179 | ;;;;;;;;;;;;;;;;;;;;
180 | ; Language Options ;
181 | ;;;;;;;;;;;;;;;;;;;;
182 |
183 | ; Enable the PHP scripting language engine under Apache.
184 | ; https://php.net/engine
185 | engine = On
186 |
187 | ; This directive determines whether or not PHP will recognize code between
188 | ; tags as PHP source which should be processed as such. It is
189 | ; generally recommended that should be used and that this feature
190 | ; should be disabled, as enabling it may result in issues when generating XML
191 | ; documents, however this remains supported for backward compatibility reasons.
192 | ; Note that this directive does not control the would work.
332 | ; https://php.net/syntax-highlighting
333 | ;highlight.string = #DD0000
334 | ;highlight.comment = #FF9900
335 | ;highlight.keyword = #007700
336 | ;highlight.default = #0000BB
337 | ;highlight.html = #000000
338 |
339 | ; If enabled, the request will be allowed to complete even if the user aborts
340 | ; the request. Consider enabling it if executing long requests, which may end up
341 | ; being interrupted by the user or a browser timing out. PHP's default behavior
342 | ; is to disable this feature.
343 | ; https://php.net/ignore-user-abort
344 | ;ignore_user_abort = On
345 |
346 | ; Determines the size of the realpath cache to be used by PHP. This value should
347 | ; be increased on systems where PHP opens many files to reflect the quantity of
348 | ; the file operations performed.
349 | ; Note: if open_basedir is set, the cache is disabled
350 | ; https://php.net/realpath-cache-size
351 | ;realpath_cache_size = 4096k
352 |
353 | ; Duration of time, in seconds for which to cache realpath information for a given
354 | ; file or directory. For systems with rarely changing files, consider increasing this
355 | ; value.
356 | ; https://php.net/realpath-cache-ttl
357 | ;realpath_cache_ttl = 120
358 |
359 | ; Enables or disables the circular reference collector.
360 | ; https://php.net/zend.enable-gc
361 | zend.enable_gc = On
362 |
363 | ; If enabled, scripts may be written in encodings that are incompatible with
364 | ; the scanner. CP936, Big5, CP949 and Shift_JIS are the examples of such
365 | ; encodings. To use this feature, mbstring extension must be enabled.
366 | ;zend.multibyte = Off
367 |
368 | ; Allows to set the default encoding for the scripts. This value will be used
369 | ; unless "declare(encoding=...)" directive appears at the top of the script.
370 | ; Only affects if zend.multibyte is set.
371 | ;zend.script_encoding =
372 |
373 | ; Allows to include or exclude arguments from stack traces generated for exceptions.
374 | ; In production, it is recommended to turn this setting on to prohibit the output
375 | ; of sensitive information in stack traces
376 | ; Default Value: Off
377 | ; Development Value: Off
378 | ; Production Value: On
379 | zend.exception_ignore_args = On
380 |
381 | ; Allows setting the maximum string length in an argument of a stringified stack trace
382 | ; to a value between 0 and 1000000.
383 | ; This has no effect when zend.exception_ignore_args is enabled.
384 | ; Default Value: 15
385 | ; Development Value: 15
386 | ; Production Value: 0
387 | ; In production, it is recommended to set this to 0 to reduce the output
388 | ; of sensitive information in stack traces.
389 | zend.exception_string_param_max_len = 0
390 |
391 | ;;;;;;;;;;;;;;;;;
392 | ; Miscellaneous ;
393 | ;;;;;;;;;;;;;;;;;
394 |
395 | ; Decides whether PHP may expose the fact that it is installed on the server
396 | ; (e.g. by adding its signature to the Web server header). It is no security
397 | ; threat in any way, but it makes it possible to determine whether you use PHP
398 | ; on your server or not.
399 | ; https://php.net/expose-php
400 | expose_php = On
401 |
402 | ;;;;;;;;;;;;;;;;;;;
403 | ; Resource Limits ;
404 | ;;;;;;;;;;;;;;;;;;;
405 |
406 | ; Maximum execution time of each script, in seconds
407 | ; https://php.net/max-execution-time
408 | ; Note: This directive is hardcoded to 0 for the CLI SAPI
409 | max_execution_time = 30
410 |
411 | ; Maximum amount of time each script may spend parsing request data. It's a good
412 | ; idea to limit this time on productions servers in order to eliminate unexpectedly
413 | ; long running scripts.
414 | ; Note: This directive is hardcoded to -1 for the CLI SAPI
415 | ; Default Value: -1 (Unlimited)
416 | ; Development Value: 60 (60 seconds)
417 | ; Production Value: 60 (60 seconds)
418 | ; https://php.net/max-input-time
419 | max_input_time = 60
420 |
421 | ; Maximum input variable nesting level
422 | ; https://php.net/max-input-nesting-level
423 | ;max_input_nesting_level = 64
424 |
425 | ; How many GET/POST/COOKIE input variables may be accepted
426 | ;max_input_vars = 1000
427 |
428 | ; How many multipart body parts (combined input variable and file uploads) may
429 | ; be accepted.
430 | ; Default Value: -1 (Sum of max_input_vars and max_file_uploads)
431 | ;max_multipart_body_parts = 1500
432 |
433 | ; Maximum amount of memory a script may consume
434 | ; https://php.net/memory-limit
435 | memory_limit = 512M
436 |
437 | ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
438 | ; Error handling and logging ;
439 | ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
440 |
441 | ; This directive informs PHP of which errors, warnings and notices you would like
442 | ; it to take action for. The recommended way of setting values for this
443 | ; directive is through the use of the error level constants and bitwise
444 | ; operators. The error level constants are below here for convenience as well as
445 | ; some common settings and their meanings.
446 | ; By default, PHP is set to take action on all errors, notices and warnings EXCEPT
447 | ; those related to E_NOTICE and E_STRICT, which together cover best practices and
448 | ; recommended coding standards in PHP. For performance reasons, this is the
449 | ; recommend error reporting setting. Your production server shouldn't be wasting
450 | ; resources complaining about best practices and coding standards. That's what
451 | ; development servers and development settings are for.
452 | ; Note: The php.ini-development file has this setting as E_ALL. This
453 | ; means it pretty much reports everything which is exactly what you want during
454 | ; development and early testing.
455 | ;
456 | ; Error Level Constants:
457 | ; E_ALL - All errors and warnings
458 | ; E_ERROR - fatal run-time errors
459 | ; E_RECOVERABLE_ERROR - almost fatal run-time errors
460 | ; E_WARNING - run-time warnings (non-fatal errors)
461 | ; E_PARSE - compile-time parse errors
462 | ; E_NOTICE - run-time notices (these are warnings which often result
463 | ; from a bug in your code, but it's possible that it was
464 | ; intentional (e.g., using an uninitialized variable and
465 | ; relying on the fact it is automatically initialized to an
466 | ; empty string)
467 | ; E_STRICT - run-time notices, enable to have PHP suggest changes
468 | ; to your code which will ensure the best interoperability
469 | ; and forward compatibility of your code
470 | ; E_CORE_ERROR - fatal errors that occur during PHP's initial startup
471 | ; E_CORE_WARNING - warnings (non-fatal errors) that occur during PHP's
472 | ; initial startup
473 | ; E_COMPILE_ERROR - fatal compile-time errors
474 | ; E_COMPILE_WARNING - compile-time warnings (non-fatal errors)
475 | ; E_USER_ERROR - user-generated error message
476 | ; E_USER_WARNING - user-generated warning message
477 | ; E_USER_NOTICE - user-generated notice message
478 | ; E_DEPRECATED - warn about code that will not work in future versions
479 | ; of PHP
480 | ; E_USER_DEPRECATED - user-generated deprecation warnings
481 | ;
482 | ; Common Values:
483 | ; E_ALL (Show all errors, warnings and notices including coding standards.)
484 | ; E_ALL & ~E_NOTICE (Show all errors, except for notices)
485 | ; E_ALL & ~E_NOTICE & ~E_STRICT (Show all errors, except for notices and coding standards warnings.)
486 | ; E_COMPILE_ERROR|E_RECOVERABLE_ERROR|E_ERROR|E_CORE_ERROR (Show only errors)
487 | ; Default Value: E_ALL
488 | ; Development Value: E_ALL
489 | ; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT
490 | ; https://php.net/error-reporting
491 | error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT
492 |
493 | ; This directive controls whether or not and where PHP will output errors,
494 | ; notices and warnings too. Error output is very useful during development, but
495 | ; it could be very dangerous in production environments. Depending on the code
496 | ; which is triggering the error, sensitive information could potentially leak
497 | ; out of your application such as database usernames and passwords or worse.
498 | ; For production environments, we recommend logging errors rather than
499 | ; sending them to STDOUT.
500 | ; Possible Values:
501 | ; Off = Do not display any errors
502 | ; stderr = Display errors to STDERR (affects only CGI/CLI binaries!)
503 | ; On or stdout = Display errors to STDOUT
504 | ; Default Value: On
505 | ; Development Value: On
506 | ; Production Value: Off
507 | ; https://php.net/display-errors
508 | display_errors = Off
509 |
510 | ; The display of errors which occur during PHP's startup sequence are handled
511 | ; separately from display_errors. We strongly recommend you set this to 'off'
512 | ; for production servers to avoid leaking configuration details.
513 | ; Default Value: On
514 | ; Development Value: On
515 | ; Production Value: Off
516 | ; https://php.net/display-startup-errors
517 | display_startup_errors = Off
518 |
519 | ; Besides displaying errors, PHP can also log errors to locations such as a
520 | ; server-specific log, STDERR, or a location specified by the error_log
521 | ; directive found below. While errors should not be displayed on productions
522 | ; servers they should still be monitored and logging is a great way to do that.
523 | ; Default Value: Off
524 | ; Development Value: On
525 | ; Production Value: On
526 | ; https://php.net/log-errors
527 | log_errors = On
528 |
529 | ; Do not log repeated messages. Repeated errors must occur in same file on same
530 | ; line unless ignore_repeated_source is set true.
531 | ; https://php.net/ignore-repeated-errors
532 | ignore_repeated_errors = Off
533 |
534 | ; Ignore source of message when ignoring repeated messages. When this setting
535 | ; is On you will not log errors with repeated messages from different files or
536 | ; source lines.
537 | ; https://php.net/ignore-repeated-source
538 | ignore_repeated_source = Off
539 |
540 | ; If this parameter is set to Off, then memory leaks will not be shown (on
541 | ; stdout or in the log). This is only effective in a debug compile, and if
542 | ; error reporting includes E_WARNING in the allowed list
543 | ; https://php.net/report-memleaks
544 | report_memleaks = On
545 |
546 | ; This setting is off by default.
547 | ;report_zend_debug = 0
548 |
549 | ; Turn off normal error reporting and emit XML-RPC error XML
550 | ; https://php.net/xmlrpc-errors
551 | ;xmlrpc_errors = 0
552 |
553 | ; An XML-RPC faultCode
554 | ;xmlrpc_error_number = 0
555 |
556 | ; When PHP displays or logs an error, it has the capability of formatting the
557 | ; error message as HTML for easier reading. This directive controls whether
558 | ; the error message is formatted as HTML or not.
559 | ; Note: This directive is hardcoded to Off for the CLI SAPI
560 | ; https://php.net/html-errors
561 | ;html_errors = On
562 |
563 | ; If html_errors is set to On *and* docref_root is not empty, then PHP
564 | ; produces clickable error messages that direct to a page describing the error
565 | ; or function causing the error in detail.
566 | ; You can download a copy of the PHP manual from https://php.net/docs
567 | ; and change docref_root to the base URL of your local copy including the
568 | ; leading '/'. You must also specify the file extension being used including
569 | ; the dot. PHP's default behavior is to leave these settings empty, in which
570 | ; case no links to documentation are generated.
571 | ; Note: Never use this feature for production boxes.
572 | ; https://php.net/docref-root
573 | ; Examples
574 | ;docref_root = "/phpmanual/"
575 |
576 | ; https://php.net/docref-ext
577 | ;docref_ext = .html
578 |
579 | ; String to output before an error message. PHP's default behavior is to leave
580 | ; this setting blank.
581 | ; https://php.net/error-prepend-string
582 | ; Example:
583 | ;error_prepend_string = ""
584 |
585 | ; String to output after an error message. PHP's default behavior is to leave
586 | ; this setting blank.
587 | ; https://php.net/error-append-string
588 | ; Example:
589 | ;error_append_string = ""
590 |
591 | ; Log errors to specified file. PHP's default behavior is to leave this value
592 | ; empty.
593 | ; https://php.net/error-log
594 | ; Example:
595 | ;error_log = php_errors.log
596 | ; Log errors to syslog (Event Log on Windows).
597 | ;error_log = syslog
598 |
599 | ; The syslog ident is a string which is prepended to every message logged
600 | ; to syslog. Only used when error_log is set to syslog.
601 | ;syslog.ident = php
602 |
603 | ; The syslog facility is used to specify what type of program is logging
604 | ; the message. Only used when error_log is set to syslog.
605 | ;syslog.facility = user
606 |
607 | ; Set this to disable filtering control characters (the default).
608 | ; Some loggers only accept NVT-ASCII, others accept anything that's not
609 | ; control characters. If your logger accepts everything, then no filtering
610 | ; is needed at all.
611 | ; Allowed values are:
612 | ; ascii (all printable ASCII characters and NL)
613 | ; no-ctrl (all characters except control characters)
614 | ; all (all characters)
615 | ; raw (like "all", but messages are not split at newlines)
616 | ; https://php.net/syslog.filter
617 | ;syslog.filter = ascii
618 |
619 | ;windows.show_crt_warning
620 | ; Default value: 0
621 | ; Development value: 0
622 | ; Production value: 0
623 |
624 | ;;;;;;;;;;;;;;;;;
625 | ; Data Handling ;
626 | ;;;;;;;;;;;;;;;;;
627 |
628 | ; The separator used in PHP generated URLs to separate arguments.
629 | ; PHP's default setting is "&".
630 | ; https://php.net/arg-separator.output
631 | ; Example:
632 | ;arg_separator.output = "&"
633 |
634 | ; List of separator(s) used by PHP to parse input URLs into variables.
635 | ; PHP's default setting is "&".
636 | ; NOTE: Every character in this directive is considered as separator!
637 | ; https://php.net/arg-separator.input
638 | ; Example:
639 | ;arg_separator.input = ";&"
640 |
641 | ; This directive determines which super global arrays are registered when PHP
642 | ; starts up. G,P,C,E & S are abbreviations for the following respective super
643 | ; globals: GET, POST, COOKIE, ENV and SERVER. There is a performance penalty
644 | ; paid for the registration of these arrays and because ENV is not as commonly
645 | ; used as the others, ENV is not recommended on productions servers. You
646 | ; can still get access to the environment variables through getenv() should you
647 | ; need to.
648 | ; Default Value: "EGPCS"
649 | ; Development Value: "GPCS"
650 | ; Production Value: "GPCS";
651 | ; https://php.net/variables-order
652 | variables_order = "GPCS"
653 |
654 | ; This directive determines which super global data (G,P & C) should be
655 | ; registered into the super global array REQUEST. If so, it also determines
656 | ; the order in which that data is registered. The values for this directive
657 | ; are specified in the same manner as the variables_order directive,
658 | ; EXCEPT one. Leaving this value empty will cause PHP to use the value set
659 | ; in the variables_order directive. It does not mean it will leave the super
660 | ; globals array REQUEST empty.
661 | ; Default Value: None
662 | ; Development Value: "GP"
663 | ; Production Value: "GP"
664 | ; https://php.net/request-order
665 | request_order = "GP"
666 |
667 | ; This directive determines whether PHP registers $argv & $argc each time it
668 | ; runs. $argv contains an array of all the arguments passed to PHP when a script
669 | ; is invoked. $argc contains an integer representing the number of arguments
670 | ; that were passed when the script was invoked. These arrays are extremely
671 | ; useful when running scripts from the command line. When this directive is
672 | ; enabled, registering these variables consumes CPU cycles and memory each time
673 | ; a script is executed. For performance reasons, this feature should be disabled
674 | ; on production servers.
675 | ; Note: This directive is hardcoded to On for the CLI SAPI
676 | ; Default Value: On
677 | ; Development Value: Off
678 | ; Production Value: Off
679 | ; https://php.net/register-argc-argv
680 | register_argc_argv = Off
681 |
682 | ; When enabled, the ENV, REQUEST and SERVER variables are created when they're
683 | ; first used (Just In Time) instead of when the script starts. If these
684 | ; variables are not used within a script, having this directive on will result
685 | ; in a performance gain. The PHP directive register_argc_argv must be disabled
686 | ; for this directive to have any effect.
687 | ; https://php.net/auto-globals-jit
688 | auto_globals_jit = On
689 |
690 | ; Whether PHP will read the POST data.
691 | ; This option is enabled by default.
692 | ; Most likely, you won't want to disable this option globally. It causes $_POST
693 | ; and $_FILES to always be empty; the only way you will be able to read the
694 | ; POST data will be through the php://input stream wrapper. This can be useful
695 | ; to proxy requests or to process the POST data in a memory efficient fashion.
696 | ; https://php.net/enable-post-data-reading
697 | ;enable_post_data_reading = Off
698 |
699 | ; Maximum size of POST data that PHP will accept.
700 | ; Its value may be 0 to disable the limit. It is ignored if POST data reading
701 | ; is disabled through enable_post_data_reading.
702 | ; https://php.net/post-max-size
703 | post_max_size = 32M
704 |
705 | ; Automatically add files before PHP document.
706 | ; https://php.net/auto-prepend-file
707 | auto_prepend_file =
708 |
709 | ; Automatically add files after PHP document.
710 | ; https://php.net/auto-append-file
711 | auto_append_file =
712 |
713 | ; By default, PHP will output a media type using the Content-Type header. To
714 | ; disable this, simply set it to be empty.
715 | ;
716 | ; PHP's built-in default media type is set to text/html.
717 | ; https://php.net/default-mimetype
718 | default_mimetype = "text/html"
719 |
720 | ; PHP's default character set is set to UTF-8.
721 | ; https://php.net/default-charset
722 | default_charset = "UTF-8"
723 |
724 | ; PHP internal character encoding is set to empty.
725 | ; If empty, default_charset is used.
726 | ; https://php.net/internal-encoding
727 | ;internal_encoding =
728 |
729 | ; PHP input character encoding is set to empty.
730 | ; If empty, default_charset is used.
731 | ; https://php.net/input-encoding
732 | ;input_encoding =
733 |
734 | ; PHP output character encoding is set to empty.
735 | ; If empty, default_charset is used.
736 | ; See also output_buffer.
737 | ; https://php.net/output-encoding
738 | ;output_encoding =
739 |
740 | ;;;;;;;;;;;;;;;;;;;;;;;;;
741 | ; Paths and Directories ;
742 | ;;;;;;;;;;;;;;;;;;;;;;;;;
743 |
744 | ; UNIX: "/path1:/path2"
745 | ;include_path = ".:/php/includes"
746 | ;
747 | ; Windows: "\path1;\path2"
748 | ;include_path = ".;c:\php\includes"
749 | ;
750 | ; PHP's default setting for include_path is ".;/path/to/php/pear"
751 | ; https://php.net/include-path
752 |
753 | ; The root of the PHP pages, used only if nonempty.
754 | ; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root
755 | ; if you are running php as a CGI under any web server (other than IIS)
756 | ; see documentation for security issues. The alternate is to use the
757 | ; cgi.force_redirect configuration below
758 | ; https://php.net/doc-root
759 | doc_root =
760 |
761 | ; The directory under which PHP opens the script using /~username used only
762 | ; if nonempty.
763 | ; https://php.net/user-dir
764 | user_dir =
765 |
766 | ; Directory in which the loadable extensions (modules) reside.
767 | ; https://php.net/extension-dir
768 | ;extension_dir = "./"
769 | ; On windows:
770 | ;extension_dir = "ext"
771 |
772 | ; Directory where the temporary files should be placed.
773 | ; Defaults to the system default (see sys_get_temp_dir)
774 | ;sys_temp_dir = "/tmp"
775 |
776 | ; Whether or not to enable the dl() function. The dl() function does NOT work
777 | ; properly in multithreaded servers, such as IIS or Zeus, and is automatically
778 | ; disabled on them.
779 | ; https://php.net/enable-dl
780 | enable_dl = Off
781 |
782 | ; cgi.force_redirect is necessary to provide security running PHP as a CGI under
783 | ; most web servers. Left undefined, PHP turns this on by default. You can
784 | ; turn it off here AT YOUR OWN RISK
785 | ; **You CAN safely turn this off for IIS, in fact, you MUST.**
786 | ; https://php.net/cgi.force-redirect
787 | ;cgi.force_redirect = 1
788 |
789 | ; if cgi.nph is enabled it will force cgi to always sent Status: 200 with
790 | ; every request. PHP's default behavior is to disable this feature.
791 | ;cgi.nph = 1
792 |
793 | ; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape
794 | ; (iPlanet) web servers, you MAY need to set an environment variable name that PHP
795 | ; will look for to know it is OK to continue execution. Setting this variable MAY
796 | ; cause security issues, KNOW WHAT YOU ARE DOING FIRST.
797 | ; https://php.net/cgi.redirect-status-env
798 | ;cgi.redirect_status_env =
799 |
800 | ; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's
801 | ; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok
802 | ; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting
803 | ; this to 1 will cause PHP CGI to fix its paths to conform to the spec. A setting
804 | ; of zero causes PHP to behave as before. Default is 1. You should fix your scripts
805 | ; to use SCRIPT_FILENAME rather than PATH_TRANSLATED.
806 | ; https://php.net/cgi.fix-pathinfo
807 | ;cgi.fix_pathinfo=1
808 |
809 | ; if cgi.discard_path is enabled, the PHP CGI binary can safely be placed outside
810 | ; of the web tree and people will not be able to circumvent .htaccess security.
811 | ;cgi.discard_path=1
812 |
813 | ; FastCGI under IIS supports the ability to impersonate
814 | ; security tokens of the calling client. This allows IIS to define the
815 | ; security context that the request runs under. mod_fastcgi under Apache
816 | ; does not currently support this feature (03/17/2002)
817 | ; Set to 1 if running under IIS. Default is zero.
818 | ; https://php.net/fastcgi.impersonate
819 | ;fastcgi.impersonate = 1
820 |
821 | ; Disable logging through FastCGI connection. PHP's default behavior is to enable
822 | ; this feature.
823 | ;fastcgi.logging = 0
824 |
825 | ; cgi.rfc2616_headers configuration option tells PHP what type of headers to
826 | ; use when sending HTTP response code. If set to 0, PHP sends Status: header that
827 | ; is supported by Apache. When this option is set to 1, PHP will send
828 | ; RFC2616 compliant header.
829 | ; Default is zero.
830 | ; https://php.net/cgi.rfc2616-headers
831 | ;cgi.rfc2616_headers = 0
832 |
833 | ; cgi.check_shebang_line controls whether CGI PHP checks for line starting with #!
834 | ; (shebang) at the top of the running script. This line might be needed if the
835 | ; script support running both as stand-alone script and via PHP CGI<. PHP in CGI
836 | ; mode skips this line and ignores its content if this directive is turned on.
837 | ; https://php.net/cgi.check-shebang-line
838 | ;cgi.check_shebang_line=1
839 |
840 | ;;;;;;;;;;;;;;;;
841 | ; File Uploads ;
842 | ;;;;;;;;;;;;;;;;
843 |
844 | ; Whether to allow HTTP file uploads.
845 | ; https://php.net/file-uploads
846 | file_uploads = On
847 |
848 | ; Temporary directory for HTTP uploaded files (will use system default if not
849 | ; specified).
850 | ; https://php.net/upload-tmp-dir
851 | ;upload_tmp_dir =
852 |
853 | ; Maximum allowed size for uploaded files.
854 | ; https://php.net/upload-max-filesize
855 | upload_max_filesize = 25M
856 |
857 | ; Maximum number of files that can be uploaded via a single request
858 | max_file_uploads = 40
859 |
860 | ;;;;;;;;;;;;;;;;;;
861 | ; Fopen wrappers ;
862 | ;;;;;;;;;;;;;;;;;;
863 |
864 | ; Whether to allow the treatment of URLs (like http:// or ftp://) as files.
865 | ; https://php.net/allow-url-fopen
866 | allow_url_fopen = On
867 |
868 | ; Whether to allow include/require to open URLs (like https:// or ftp://) as files.
869 | ; https://php.net/allow-url-include
870 | allow_url_include = Off
871 |
872 | ; Define the anonymous ftp password (your email address). PHP's default setting
873 | ; for this is empty.
874 | ; https://php.net/from
875 | ;from="john@doe.com"
876 |
877 | ; Define the User-Agent string. PHP's default setting for this is empty.
878 | ; https://php.net/user-agent
879 | ;user_agent="PHP"
880 |
881 | ; Default timeout for socket based streams (seconds)
882 | ; https://php.net/default-socket-timeout
883 | default_socket_timeout = 60
884 |
885 | ; If your scripts have to deal with files from Macintosh systems,
886 | ; or you are running on a Mac and need to deal with files from
887 | ; unix or win32 systems, setting this flag will cause PHP to
888 | ; automatically detect the EOL character in those files so that
889 | ; fgets() and file() will work regardless of the source of the file.
890 | ; https://php.net/auto-detect-line-endings
891 | ;auto_detect_line_endings = Off
892 |
893 | ;;;;;;;;;;;;;;;;;;;;;;
894 | ; Dynamic Extensions ;
895 | ;;;;;;;;;;;;;;;;;;;;;;
896 |
897 | ; If you wish to have an extension loaded automatically, use the following
898 | ; syntax:
899 | ;
900 | ; extension=modulename
901 | ;
902 | ; For example:
903 | ;
904 | ; extension=mysqli
905 | ;
906 | ; When the extension library to load is not located in the default extension
907 | ; directory, You may specify an absolute path to the library file:
908 | ;
909 | ; extension=/path/to/extension/mysqli.so
910 | ;
911 | ; Note : The syntax used in previous PHP versions ('extension=.so' and
912 | ; 'extension='php_.dll') is supported for legacy reasons and may be
913 | ; deprecated in a future PHP major version. So, when it is possible, please
914 | ; move to the new ('extension=) syntax.
915 | ;
916 | ; Notes for Windows environments :
917 | ;
918 | ; - Many DLL files are located in the ext/
919 | ; extension folders as well as the separate PECL DLL download.
920 | ; Be sure to appropriately set the extension_dir directive.
921 | ;
922 | ;extension=bz2
923 |
924 | ; The ldap extension must be before curl if OpenSSL 1.0.2 and OpenLDAP is used
925 | ; otherwise it results in segfault when unloading after using SASL.
926 | ; See https://github.com/php/php-src/issues/8620 for more info.
927 | ;extension=ldap
928 |
929 | ;extension=curl
930 | ;extension=ffi
931 | ;extension=ftp
932 | ;extension=fileinfo
933 | ;extension=gd
934 | ;extension=gettext
935 | ;extension=gmp
936 | ;extension=intl
937 | ;extension=imap
938 | ;extension=mbstring
939 | ;extension=exif ; Must be after mbstring as it depends on it
940 | ;extension=mysqli
941 | ;extension=oci8_12c ; Use with Oracle Database 12c Instant Client
942 | ;extension=oci8_19 ; Use with Oracle Database 19 Instant Client
943 | ;extension=odbc
944 | ;extension=openssl
945 | ;extension=pdo_firebird
946 | ;extension=pdo_mysql
947 | ;extension=pdo_oci
948 | ;extension=pdo_odbc
949 | ;extension=pdo_pgsql
950 | ;extension=pdo_sqlite
951 | ;extension=pgsql
952 | ;extension=shmop
953 |
954 | ; The MIBS data available in the PHP distribution must be installed.
955 | ; See https://www.php.net/manual/en/snmp.installation.php
956 | ;extension=snmp
957 |
958 | ;extension=soap
959 | ;extension=sockets
960 | ;extension=sodium
961 | ;extension=sqlite3
962 | ;extension=tidy
963 | ;extension=xsl
964 | ;extension=zip
965 |
966 | ;zend_extension=opcache
967 |
968 | ;;;;;;;;;;;;;;;;;;;
969 | ; Module Settings ;
970 | ;;;;;;;;;;;;;;;;;;;
971 |
972 | [CLI Server]
973 | ; Whether the CLI web server uses ANSI color coding in its terminal output.
974 | cli_server.color = On
975 |
976 | [Date]
977 | ; Defines the default timezone used by the date functions
978 | ; https://php.net/date.timezone
979 | date.timezone = MYTIMEZONE
980 |
981 | ; https://php.net/date.default-latitude
982 | ;date.default_latitude = 31.7667
983 |
984 | ; https://php.net/date.default-longitude
985 | ;date.default_longitude = 35.2333
986 |
987 | ; https://php.net/date.sunrise-zenith
988 | ;date.sunrise_zenith = 90.833333
989 |
990 | ; https://php.net/date.sunset-zenith
991 | ;date.sunset_zenith = 90.833333
992 |
993 | [filter]
994 | ; https://php.net/filter.default
995 | ;filter.default = unsafe_raw
996 |
997 | ; https://php.net/filter.default-flags
998 | ;filter.default_flags =
999 |
1000 | [iconv]
1001 | ; Use of this INI entry is deprecated, use global input_encoding instead.
1002 | ; If empty, default_charset or input_encoding or iconv.input_encoding is used.
1003 | ; The precedence is: default_charset < input_encoding < iconv.input_encoding
1004 | ;iconv.input_encoding =
1005 |
1006 | ; Use of this INI entry is deprecated, use global internal_encoding instead.
1007 | ; If empty, default_charset or internal_encoding or iconv.internal_encoding is used.
1008 | ; The precedence is: default_charset < internal_encoding < iconv.internal_encoding
1009 | ;iconv.internal_encoding =
1010 |
1011 | ; Use of this INI entry is deprecated, use global output_encoding instead.
1012 | ; If empty, default_charset or output_encoding or iconv.output_encoding is used.
1013 | ; The precedence is: default_charset < output_encoding < iconv.output_encoding
1014 | ; To use an output encoding conversion, iconv's output handler must be set
1015 | ; otherwise output encoding conversion cannot be performed.
1016 | ;iconv.output_encoding =
1017 |
1018 | [imap]
1019 | ; rsh/ssh logins are disabled by default. Use this INI entry if you want to
1020 | ; enable them. Note that the IMAP library does not filter mailbox names before
1021 | ; passing them to rsh/ssh command, thus passing untrusted data to this function
1022 | ; with rsh/ssh enabled is insecure.
1023 | ;imap.enable_insecure_rsh=0
1024 |
1025 | [intl]
1026 | ;intl.default_locale =
1027 | ; This directive allows you to produce PHP errors when some error
1028 | ; happens within intl functions. The value is the level of the error produced.
1029 | ; Default is 0, which does not produce any errors.
1030 | ;intl.error_level = E_WARNING
1031 | ;intl.use_exceptions = 0
1032 |
1033 | [sqlite3]
1034 | ; Directory pointing to SQLite3 extensions
1035 | ; https://php.net/sqlite3.extension-dir
1036 | ;sqlite3.extension_dir =
1037 |
1038 | ; SQLite defensive mode flag (only available from SQLite 3.26+)
1039 | ; When the defensive flag is enabled, language features that allow ordinary
1040 | ; SQL to deliberately corrupt the database file are disabled. This forbids
1041 | ; writing directly to the schema, shadow tables (eg. FTS data tables), or
1042 | ; the sqlite_dbpage virtual table.
1043 | ; https://www.sqlite.org/c3ref/c_dbconfig_defensive.html
1044 | ; (for older SQLite versions, this flag has no use)
1045 | ;sqlite3.defensive = 1
1046 |
1047 | [Pcre]
1048 | ; PCRE library backtracking limit.
1049 | ; https://php.net/pcre.backtrack-limit
1050 | ;pcre.backtrack_limit=100000
1051 |
1052 | ; PCRE library recursion limit.
1053 | ; Please note that if you set this value to a high number you may consume all
1054 | ; the available process stack and eventually crash PHP (due to reaching the
1055 | ; stack size limit imposed by the Operating System).
1056 | ; https://php.net/pcre.recursion-limit
1057 | ;pcre.recursion_limit=100000
1058 |
1059 | ; Enables or disables JIT compilation of patterns. This requires the PCRE
1060 | ; library to be compiled with JIT support.
1061 | pcre.jit=1
1062 |
1063 | [Pdo]
1064 | ; Whether to pool ODBC connections. Can be one of "strict", "relaxed" or "off"
1065 | ; https://php.net/pdo-odbc.connection-pooling
1066 | ;pdo_odbc.connection_pooling=strict
1067 |
1068 | [Pdo_mysql]
1069 | ; Default socket name for local MySQL connects. If empty, uses the built-in
1070 | ; MySQL defaults.
1071 | pdo_mysql.default_socket=
1072 |
1073 | [Phar]
1074 | ; https://php.net/phar.readonly
1075 | ;phar.readonly = On
1076 |
1077 | ; https://php.net/phar.require-hash
1078 | ;phar.require_hash = On
1079 |
1080 | ;phar.cache_list =
1081 |
1082 | [mail function]
1083 | ; For Win32 only.
1084 | ; https://php.net/smtp
1085 | SMTP = localhost
1086 | ; https://php.net/smtp-port
1087 | smtp_port = 25
1088 |
1089 | ; For Win32 only.
1090 | ; https://php.net/sendmail-from
1091 | ;sendmail_from = me@example.com
1092 |
1093 | ; For Unix only. You may supply arguments as well (default: "sendmail -t -i").
1094 | ; https://php.net/sendmail-path
1095 | ;sendmail_path =
1096 |
1097 | ; Force the addition of the specified parameters to be passed as extra parameters
1098 | ; to the sendmail binary. These parameters will always replace the value of
1099 | ; the 5th parameter to mail().
1100 | ;mail.force_extra_parameters =
1101 |
1102 | ; Add X-PHP-Originating-Script: that will include uid of the script followed by the filename
1103 | mail.add_x_header = Off
1104 |
1105 | ; Use mixed LF and CRLF line separators to keep compatibility with some
1106 | ; RFC 2822 non conformant MTA.
1107 | mail.mixed_lf_and_crlf = Off
1108 |
1109 | ; The path to a log file that will log all mail() calls. Log entries include
1110 | ; the full path of the script, line number, To address and headers.
1111 | ;mail.log =
1112 | ; Log mail to syslog (Event Log on Windows).
1113 | ;mail.log = syslog
1114 |
1115 | [ODBC]
1116 | ; https://php.net/odbc.default-db
1117 | ;odbc.default_db = Not yet implemented
1118 |
1119 | ; https://php.net/odbc.default-user
1120 | ;odbc.default_user = Not yet implemented
1121 |
1122 | ; https://php.net/odbc.default-pw
1123 | ;odbc.default_pw = Not yet implemented
1124 |
1125 | ; Controls the ODBC cursor model.
1126 | ; Default: SQL_CURSOR_STATIC (default).
1127 | ;odbc.default_cursortype
1128 |
1129 | ; Allow or prevent persistent links.
1130 | ; https://php.net/odbc.allow-persistent
1131 | odbc.allow_persistent = On
1132 |
1133 | ; Check that a connection is still valid before reuse.
1134 | ; https://php.net/odbc.check-persistent
1135 | odbc.check_persistent = On
1136 |
1137 | ; Maximum number of persistent links. -1 means no limit.
1138 | ; https://php.net/odbc.max-persistent
1139 | odbc.max_persistent = -1
1140 |
1141 | ; Maximum number of links (persistent + non-persistent). -1 means no limit.
1142 | ; https://php.net/odbc.max-links
1143 | odbc.max_links = -1
1144 |
1145 | ; Handling of LONG fields. Returns number of bytes to variables. 0 means
1146 | ; passthru.
1147 | ; https://php.net/odbc.defaultlrl
1148 | odbc.defaultlrl = 4096
1149 |
1150 | ; Handling of binary data. 0 means passthru, 1 return as is, 2 convert to char.
1151 | ; See the documentation on odbc_binmode and odbc_longreadlen for an explanation
1152 | ; of odbc.defaultlrl and odbc.defaultbinmode
1153 | ; https://php.net/odbc.defaultbinmode
1154 | odbc.defaultbinmode = 1
1155 |
1156 | [MySQLi]
1157 |
1158 | ; Maximum number of persistent links. -1 means no limit.
1159 | ; https://php.net/mysqli.max-persistent
1160 | mysqli.max_persistent = -1
1161 |
1162 | ; Allow accessing, from PHP's perspective, local files with LOAD DATA statements
1163 | ; https://php.net/mysqli.allow_local_infile
1164 | ;mysqli.allow_local_infile = On
1165 |
1166 | ; It allows the user to specify a folder where files that can be sent via LOAD DATA
1167 | ; LOCAL can exist. It is ignored if mysqli.allow_local_infile is enabled.
1168 | ;mysqli.local_infile_directory =
1169 |
1170 | ; Allow or prevent persistent links.
1171 | ; https://php.net/mysqli.allow-persistent
1172 | mysqli.allow_persistent = On
1173 |
1174 | ; Maximum number of links. -1 means no limit.
1175 | ; https://php.net/mysqli.max-links
1176 | mysqli.max_links = -1
1177 |
1178 | ; Default port number for mysqli_connect(). If unset, mysqli_connect() will use
1179 | ; the $MYSQL_TCP_PORT or the mysql-tcp entry in /etc/services or the
1180 | ; compile-time value defined MYSQL_PORT (in that order). Win32 will only look
1181 | ; at MYSQL_PORT.
1182 | ; https://php.net/mysqli.default-port
1183 | mysqli.default_port = 3306
1184 |
1185 | ; Default socket name for local MySQL connects. If empty, uses the built-in
1186 | ; MySQL defaults.
1187 | ; https://php.net/mysqli.default-socket
1188 | mysqli.default_socket =
1189 |
1190 | ; Default host for mysqli_connect() (doesn't apply in safe mode).
1191 | ; https://php.net/mysqli.default-host
1192 | mysqli.default_host =
1193 |
1194 | ; Default user for mysqli_connect() (doesn't apply in safe mode).
1195 | ; https://php.net/mysqli.default-user
1196 | mysqli.default_user =
1197 |
1198 | ; Default password for mysqli_connect() (doesn't apply in safe mode).
1199 | ; Note that this is generally a *bad* idea to store passwords in this file.
1200 | ; *Any* user with PHP access can run 'echo get_cfg_var("mysqli.default_pw")
1201 | ; and reveal this password! And of course, any users with read access to this
1202 | ; file will be able to reveal the password as well.
1203 | ; https://php.net/mysqli.default-pw
1204 | mysqli.default_pw =
1205 |
1206 | ; Allow or prevent reconnect
1207 | mysqli.reconnect = Off
1208 |
1209 | ; If this option is enabled, closing a persistent connection will rollback
1210 | ; any pending transactions of this connection, before it is put back
1211 | ; into the persistent connection pool.
1212 | ;mysqli.rollback_on_cached_plink = Off
1213 |
1214 | [mysqlnd]
1215 | ; Enable / Disable collection of general statistics by mysqlnd which can be
1216 | ; used to tune and monitor MySQL operations.
1217 | mysqlnd.collect_statistics = On
1218 |
1219 | ; Enable / Disable collection of memory usage statistics by mysqlnd which can be
1220 | ; used to tune and monitor MySQL operations.
1221 | mysqlnd.collect_memory_statistics = Off
1222 |
1223 | ; Records communication from all extensions using mysqlnd to the specified log
1224 | ; file.
1225 | ; https://php.net/mysqlnd.debug
1226 | ;mysqlnd.debug =
1227 |
1228 | ; Defines which queries will be logged.
1229 | ;mysqlnd.log_mask = 0
1230 |
1231 | ; Default size of the mysqlnd memory pool, which is used by result sets.
1232 | ;mysqlnd.mempool_default_size = 16000
1233 |
1234 | ; Size of a pre-allocated buffer used when sending commands to MySQL in bytes.
1235 | ;mysqlnd.net_cmd_buffer_size = 2048
1236 |
1237 | ; Size of a pre-allocated buffer used for reading data sent by the server in
1238 | ; bytes.
1239 | ;mysqlnd.net_read_buffer_size = 32768
1240 |
1241 | ; Timeout for network requests in seconds.
1242 | ;mysqlnd.net_read_timeout = 31536000
1243 |
1244 | ; SHA-256 Authentication Plugin related. File with the MySQL server public RSA
1245 | ; key.
1246 | ;mysqlnd.sha256_server_public_key =
1247 |
1248 | [OCI8]
1249 |
1250 | ; Connection: Enables privileged connections using external
1251 | ; credentials (OCI_SYSOPER, OCI_SYSDBA)
1252 | ; https://php.net/oci8.privileged-connect
1253 | ;oci8.privileged_connect = Off
1254 |
1255 | ; Connection: The maximum number of persistent OCI8 connections per
1256 | ; process. Using -1 means no limit.
1257 | ; https://php.net/oci8.max-persistent
1258 | ;oci8.max_persistent = -1
1259 |
1260 | ; Connection: The maximum number of seconds a process is allowed to
1261 | ; maintain an idle persistent connection. Using -1 means idle
1262 | ; persistent connections will be maintained forever.
1263 | ; https://php.net/oci8.persistent-timeout
1264 | ;oci8.persistent_timeout = -1
1265 |
1266 | ; Connection: The number of seconds that must pass before issuing a
1267 | ; ping during oci_pconnect() to check the connection validity. When
1268 | ; set to 0, each oci_pconnect() will cause a ping. Using -1 disables
1269 | ; pings completely.
1270 | ; https://php.net/oci8.ping-interval
1271 | ;oci8.ping_interval = 60
1272 |
1273 | ; Connection: Set this to a user chosen connection class to be used
1274 | ; for all pooled server requests with Oracle Database Resident
1275 | ; Connection Pooling (DRCP). To use DRCP, this value should be set to
1276 | ; the same string for all web servers running the same application,
1277 | ; the database pool must be configured, and the connection string must
1278 | ; specify to use a pooled server.
1279 | ;oci8.connection_class =
1280 |
1281 | ; High Availability: Using On lets PHP receive Fast Application
1282 | ; Notification (FAN) events generated when a database node fails. The
1283 | ; database must also be configured to post FAN events.
1284 | ;oci8.events = Off
1285 |
1286 | ; Tuning: This option enables statement caching, and specifies how
1287 | ; many statements to cache. Using 0 disables statement caching.
1288 | ; https://php.net/oci8.statement-cache-size
1289 | ;oci8.statement_cache_size = 20
1290 |
1291 | ; Tuning: Enables row prefetching and sets the default number of
1292 | ; rows that will be fetched automatically after statement execution.
1293 | ; https://php.net/oci8.default-prefetch
1294 | ;oci8.default_prefetch = 100
1295 |
1296 | ; Tuning: Sets the amount of LOB data that is internally returned from
1297 | ; Oracle Database when an Oracle LOB locator is initially retrieved as
1298 | ; part of a query. Setting this can improve performance by reducing
1299 | ; round-trips.
1300 | ; https://php.net/oci8.prefetch-lob-size
1301 | ; oci8.prefetch_lob_size = 0
1302 |
1303 | ; Compatibility. Using On means oci_close() will not close
1304 | ; oci_connect() and oci_new_connect() connections.
1305 | ; https://php.net/oci8.old-oci-close-semantics
1306 | ;oci8.old_oci_close_semantics = Off
1307 |
1308 | [PostgreSQL]
1309 | ; Allow or prevent persistent links.
1310 | ; https://php.net/pgsql.allow-persistent
1311 | pgsql.allow_persistent = On
1312 |
1313 | ; Detect broken persistent links always with pg_pconnect().
1314 | ; Auto reset feature requires a little overheads.
1315 | ; https://php.net/pgsql.auto-reset-persistent
1316 | pgsql.auto_reset_persistent = Off
1317 |
1318 | ; Maximum number of persistent links. -1 means no limit.
1319 | ; https://php.net/pgsql.max-persistent
1320 | pgsql.max_persistent = -1
1321 |
1322 | ; Maximum number of links (persistent+non persistent). -1 means no limit.
1323 | ; https://php.net/pgsql.max-links
1324 | pgsql.max_links = -1
1325 |
1326 | ; Ignore PostgreSQL backends Notice message or not.
1327 | ; Notice message logging require a little overheads.
1328 | ; https://php.net/pgsql.ignore-notice
1329 | pgsql.ignore_notice = 0
1330 |
1331 | ; Log PostgreSQL backends Notice message or not.
1332 | ; Unless pgsql.ignore_notice=0, module cannot log notice message.
1333 | ; https://php.net/pgsql.log-notice
1334 | pgsql.log_notice = 0
1335 |
1336 | [bcmath]
1337 | ; Number of decimal digits for all bcmath functions.
1338 | ; https://php.net/bcmath.scale
1339 | bcmath.scale = 0
1340 |
1341 | [browscap]
1342 | ; https://php.net/browscap
1343 | ;browscap = extra/browscap.ini
1344 |
1345 | [Session]
1346 | ; Handler used to store/retrieve data.
1347 | ; https://php.net/session.save-handler
1348 | session.save_handler = files
1349 |
1350 | ; Argument passed to save_handler. In the case of files, this is the path
1351 | ; where data files are stored. Note: Windows users have to change this
1352 | ; variable in order to use PHP's session functions.
1353 | ;
1354 | ; The path can be defined as:
1355 | ;
1356 | ; session.save_path = "N;/path"
1357 | ;
1358 | ; where N is an integer. Instead of storing all the session files in
1359 | ; /path, what this will do is use subdirectories N-levels deep, and
1360 | ; store the session data in those directories. This is useful if
1361 | ; your OS has problems with many files in one directory, and is
1362 | ; a more efficient layout for servers that handle many sessions.
1363 | ;
1364 | ; NOTE 1: PHP will not create this directory structure automatically.
1365 | ; You can use the script in the ext/session dir for that purpose.
1366 | ; NOTE 2: See the section on garbage collection below if you choose to
1367 | ; use subdirectories for session storage
1368 | ;
1369 | ; The file storage module creates files using mode 600 by default.
1370 | ; You can change that by using
1371 | ;
1372 | ; session.save_path = "N;MODE;/path"
1373 | ;
1374 | ; where MODE is the octal representation of the mode. Note that this
1375 | ; does not overwrite the process's umask.
1376 | ; https://php.net/session.save-path
1377 | ;session.save_path = "/tmp"
1378 |
1379 | ; Whether to use strict session mode.
1380 | ; Strict session mode does not accept an uninitialized session ID, and
1381 | ; regenerates the session ID if the browser sends an uninitialized session ID.
1382 | ; Strict mode protects applications from session fixation via a session adoption
1383 | ; vulnerability. It is disabled by default for maximum compatibility, but
1384 | ; enabling it is encouraged.
1385 | ; https://wiki.php.net/rfc/strict_sessions
1386 | session.use_strict_mode = 0
1387 |
1388 | ; Whether to use cookies.
1389 | ; https://php.net/session.use-cookies
1390 | session.use_cookies = 1
1391 |
1392 | ; https://php.net/session.cookie-secure
1393 | ;session.cookie_secure =
1394 |
1395 | ; This option forces PHP to fetch and use a cookie for storing and maintaining
1396 | ; the session id. We encourage this operation as it's very helpful in combating
1397 | ; session hijacking when not specifying and managing your own session id. It is
1398 | ; not the be-all and end-all of session hijacking defense, but it's a good start.
1399 | ; https://php.net/session.use-only-cookies
1400 | session.use_only_cookies = 1
1401 |
1402 | ; Name of the session (used as cookie name).
1403 | ; https://php.net/session.name
1404 | session.name = PHPSESSID
1405 |
1406 | ; Initialize session on request startup.
1407 | ; https://php.net/session.auto-start
1408 | session.auto_start = 0
1409 |
1410 | ; Lifetime in seconds of cookie or, if 0, until browser is restarted.
1411 | ; https://php.net/session.cookie-lifetime
1412 | session.cookie_lifetime = 0
1413 |
1414 | ; The path for which the cookie is valid.
1415 | ; https://php.net/session.cookie-path
1416 | session.cookie_path = /
1417 |
1418 | ; The domain for which the cookie is valid.
1419 | ; https://php.net/session.cookie-domain
1420 | session.cookie_domain =
1421 |
1422 | ; Whether or not to add the httpOnly flag to the cookie, which makes it
1423 | ; inaccessible to browser scripting languages such as JavaScript.
1424 | ; https://php.net/session.cookie-httponly
1425 | session.cookie_httponly =
1426 |
1427 | ; Add SameSite attribute to cookie to help mitigate Cross-Site Request Forgery (CSRF/XSRF)
1428 | ; Current valid values are "Strict", "Lax" or "None". When using "None",
1429 | ; make sure to include the quotes, as `none` is interpreted like `false` in ini files.
1430 | ; https://tools.ietf.org/html/draft-west-first-party-cookies-07
1431 | session.cookie_samesite =
1432 |
1433 | ; Handler used to serialize data. php is the standard serializer of PHP.
1434 | ; https://php.net/session.serialize-handler
1435 | session.serialize_handler = php
1436 |
1437 | ; Defines the probability that the 'garbage collection' process is started on every
1438 | ; session initialization. The probability is calculated by using gc_probability/gc_divisor,
1439 | ; e.g. 1/100 means there is a 1% chance that the GC process starts on each request.
1440 | ; Default Value: 1
1441 | ; Development Value: 1
1442 | ; Production Value: 1
1443 | ; https://php.net/session.gc-probability
1444 | session.gc_probability = 1
1445 |
1446 | ; Defines the probability that the 'garbage collection' process is started on every
1447 | ; session initialization. The probability is calculated by using gc_probability/gc_divisor,
1448 | ; e.g. 1/100 means there is a 1% chance that the GC process starts on each request.
1449 | ; For high volume production servers, using a value of 1000 is a more efficient approach.
1450 | ; Default Value: 100
1451 | ; Development Value: 1000
1452 | ; Production Value: 1000
1453 | ; https://php.net/session.gc-divisor
1454 | session.gc_divisor = 1000
1455 |
1456 | ; After this number of seconds, stored data will be seen as 'garbage' and
1457 | ; cleaned up by the garbage collection process.
1458 | ; https://php.net/session.gc-maxlifetime
1459 | session.gc_maxlifetime = 1440
1460 |
1461 | ; NOTE: If you are using the subdirectory option for storing session files
1462 | ; (see session.save_path above), then garbage collection does *not*
1463 | ; happen automatically. You will need to do your own garbage
1464 | ; collection through a shell script, cron entry, or some other method.
1465 | ; For example, the following script is the equivalent of setting
1466 | ; session.gc_maxlifetime to 1440 (1440 seconds = 24 minutes):
1467 | ; find /path/to/sessions -cmin +24 -type f | xargs rm
1468 |
1469 | ; Check HTTP Referer to invalidate externally stored URLs containing ids.
1470 | ; HTTP_REFERER has to contain this substring for the session to be
1471 | ; considered as valid.
1472 | ; https://php.net/session.referer-check
1473 | session.referer_check =
1474 |
1475 | ; Set to {nocache,private,public,} to determine HTTP caching aspects
1476 | ; or leave this empty to avoid sending anti-caching headers.
1477 | ; https://php.net/session.cache-limiter
1478 | session.cache_limiter = nocache
1479 |
1480 | ; Document expires after n minutes.
1481 | ; https://php.net/session.cache-expire
1482 | session.cache_expire = 180
1483 |
1484 | ; trans sid support is disabled by default.
1485 | ; Use of trans sid may risk your users' security.
1486 | ; Use this option with caution.
1487 | ; - User may send URL contains active session ID
1488 | ; to other person via. email/irc/etc.
1489 | ; - URL that contains active session ID may be stored
1490 | ; in publicly accessible computer.
1491 | ; - User may access your site with the same session ID
1492 | ; always using URL stored in browser's history or bookmarks.
1493 | ; https://php.net/session.use-trans-sid
1494 | session.use_trans_sid = 0
1495 |
1496 | ; Set session ID character length. This value could be between 22 to 256.
1497 | ; Shorter length than default is supported only for compatibility reason.
1498 | ; Users should use 32 or more chars.
1499 | ; https://php.net/session.sid-length
1500 | ; Default Value: 32
1501 | ; Development Value: 26
1502 | ; Production Value: 26
1503 | session.sid_length = 26
1504 |
1505 | ; The URL rewriter will look for URLs in a defined set of HTML tags.
1506 | ;