Aquesta pàgina forma part de la documentació de Moodle en català, tot i que no ha estat traduïda encara. Podeu contribuir obertament a les tasques de traducció. Podeu consultar la Guia d'edició de la documentació i també participar ens els debats del fòrum de traductors de la documentació a moodle.org

report/security/report security check displayerrors: diferència entre les revisions

De MoodleDocs
Salta a:navegació, cerca
Main pageManaging a Moodle siteSecuritySecurity overview reportreport/security/report security check displayerrors
Security
Cap resum de modificació
m (added link to spanish version of page)
 
(11 revisions intermèdies per 6 usuaris que no es mostren)
Línia 1: Línia 1:
If PHP is set to display errors, then anyone can enter a faulty URL causing PHP to give up valuable information about directory structures and so on.  
{{Security overview report}}If PHP is set to display errors, then anyone can enter a faulty URL causing PHP to give up valuable information about directory structures and so on.  


If you go to ''Settings > Site administration > Reports > Security overview'', displaying of PHP errors status is Warning. 
on your web server, locate php.ini, open it in wordpad and search for "'''display_errors'''".  Ensure that it is set to "'''display_errors = Off'''" and then save.  If this is on a hosted webserver (e.g. network solutions), insert "'''display_errors = Off'''" into the php.ini or call them for instructions (took 2 minutes) on how to do it.  Very simple to modify.
Please note it is not enough to change debugging level in Moodle settings because we need to prevent errors in scripts that are not supposed to be accessed directly.


==See also==
==See also==
Línia 7: Línia 11:
* Using [http://moodle.org/mod/forum/discuss.php?d=101761 upgrade to 1.9.2 has PHP setting display_errors message] Moodle forum discussion
* Using [http://moodle.org/mod/forum/discuss.php?d=101761 upgrade to 1.9.2 has PHP setting display_errors message] Moodle forum discussion


[[Category:Security]]
[[es:report/security/report_security_check_displayerrors]]
 
[[eu:report/security/report_security_check_displayerrors]]
[[eu:report/security/report_security_check_displayerrors]]
[[fr:report/security/report security check displayerrors]]

Revisió de 15:32, 16 abr 2013

If PHP is set to display errors, then anyone can enter a faulty URL causing PHP to give up valuable information about directory structures and so on.

If you go to Settings > Site administration > Reports > Security overview, displaying of PHP errors status is Warning. on your web server, locate php.ini, open it in wordpad and search for "display_errors". Ensure that it is set to "display_errors = Off" and then save. If this is on a hosted webserver (e.g. network solutions), insert "display_errors = Off" into the php.ini or call them for instructions (took 2 minutes) on how to do it. Very simple to modify.

Please note it is not enough to change debugging level in Moodle settings because we need to prevent errors in scripts that are not supposed to be accessed directly.

See also

Obtingut de «https://docs.moodle.org/2x/ca/index.php?title=report/security/report_security_check_displayerrors&oldid=103989»
Powered by MediaWiki