-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.user.ini
More file actions
32 lines (32 loc) · 1.9 KB
/
.user.ini
File metadata and controls
32 lines (32 loc) · 1.9 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
; ═══════════════════════════════════════════════════════════════
; SOUVERAIN CMS — PHP Security Hardening
; O2switch — PHP 8.2+ — .user.ini
; ═══════════════════════════════════════════════════════════════
; ── ERREURS (jamais affichées en production) ──────────────────
display_errors = Off
display_startup_errors = Off
log_errors = On
error_reporting = 0
; ── UPLOADS ──────────────────────────────────────────────────
file_uploads = On
upload_max_filesize = 10M
post_max_size = 12M
max_file_uploads = 5
; ── LIMITES EXÉCUTION ─────────────────────────────────────────
max_execution_time = 60
max_input_time = 30
memory_limit = 256M
; ── SÉCURITÉ SESSION ─────────────────────────────────────────
session.cookie_httponly = 1
session.cookie_secure = 1
session.cookie_samesite = Strict
session.use_strict_mode = 1
session.use_only_cookies = 1
session.gc_maxlifetime = 1800
session.cookie_lifetime = 0
; ── FONCTIONS DANGEREUSES DÉSACTIVÉES ────────────────────────
disable_functions = exec,passthru,shell_exec,system,proc_open,popen,curl_exec,curl_multi_exec,parse_ini_file,show_source,phpinfo
; ── SÉCURITÉ GÉNÉRALE ────────────────────────────────────────
expose_php = Off
allow_url_fopen = Off
allow_url_include = Off