ÓÅ»¯PHP³ÌÐò
ÏÈÎÒÃÇÁ˽âÒ»ÏÂÎÒÃǵÄphp³ÌÐòÊÇÔõÑùÖ´Ðеģ¬Ê×ÏÈËû±»±àÒëΪÖмä´úÂ룬ȻºóÖмä´úÂë±»ËÍÈëÖ´ÐÐÒýÇæÖ´ÐУ¬È»ºóÏú»Ù¡£Ã¿¸öÇëÇóµÄÖмä´úÂëÔÚÖ´ÐÐÍêÖ®ºó±»Ïú»Ù£¬ÕâÑùµÄºÃ´¦ÔÚÓÚËûÍêÈ«¸ôÀëÁ˲»Í¬µÄÇëÇó£¬Ê¹ÄÚ´æʹÓÃÂʽµµÍ¡£µ«ÊÇÕâÑùµÄȱµãÒ²ÏÔ¶øÒ×¼û£¬ÒòΪËûÐèÒªÔÙÖظ´ÇëÇóÒ»¸ö½çÃæµÄʱºò¶ÔÒ»¸ö´úÂëÁ¬Ðø±àÒëÁ½´Î£¬±àÒëµÄÖмä´úÂëûÓÐÒ»µã¸´ÓÃÐÔ¡£
ÎÒÃÇÄÃZPSÀ´ËµÊ£¬¿´ËûÄÜÌṩʲôÓÅ»¯¹¦ÄÜ£º
Ò»£¬ ×Ô¶¯ÓÅ»¯
£¬Ò²¾ÍÊÇÎÒÃǵÄzend
optimizerÌṩµÄ¹¦ÄÜ£¬Ëû¿ÉÒÔ¶ÔÖмä´úÂë½øÐÐÓÅ»¯£¬ÕâЩÓÅ»¯ÊÇÓïÑÔ·½ÃæµÄ£¬½«Ð§Âʵ͵Äת»¯ÎªÐ§Âʸߵģ¬µ«ËûµÄÓÅ»¯Ä¿±êÖ»ÏÞ¶¨ÔÚÖмä´úÂ룬Òò´Ë²»»áÓ°ÏìÄã±àдµÄÔ´´úÂë¡£Õâ¸öÄÜÌá¸ß20%×óÓÒµÄÐÔÄÜ¡£
¶þ£¬
´úÂë±àÒ뻺´æ
£¬¾ÍÊÇʹÖмä´úÂë¸üÓи´ÓÃÐÔ¡£ÒòΪËû»á°ÑÖмä´úÂë½øÐлº´æ£¬Ï´ÎʹÓõÄʱºò¾Í²»ÐèÒª±àÒëÁË£¬Õâ¸öÓÐ50%µ½300%µÄÐÔÄÜÌáÉý¡£
Èý£¬
¶¯Ì¬ÄÚÈÝ»º´æ
£¬Ò²¾ÍÊÇ°Ñphp´úÂëÖ´ÐÐÍêÖ®ºóÉú³ÉµÄÄÚÈݽøÐлº´æ£¬Õâ¸öÊÊÓÃÓÚÃݵȵÄÇëÇ󣬶øÇÒÇëÇó²»»á¶Ô·þÎñÆ÷¶ËµÄÊý¾ÝÔì³ÉÐ޸ģ¬¶øÖ»ÊÇgetÊý¾ÝÄÚÈÝ¡£Õâ¸öÌáÉýЧ¹û×î´ó£¬µ«¶ÔÓÚ¸öÐÔ»¯µÄ½çÃ治̫Êʺϣ¬Äú¿ÉÒÔÑ¡ÔñʹÓò¿·Ö»º´æµÄ·½Ê½£¬µ«Ã÷ÏÔÌá¸ßÁ˸´ÔӶȡ£
ËÄ£¬ÄÚÈÝѹËõ
£ºËûÖ÷ÒªÊÇÌá¸ßHTTPµÄ´«ÊäЧÂÊ£¬Ê¹´«ÊäÁ¿¼õÉÙ90%×óÓÒ£¬µ«ËûÒ²ÓÐÎþÉü£¬¾ÍÊÇÔö¼ÓÁËÁ½¶Ë£¨c/s£©µÄ¼ÆËãÁ¿¡£µ«ZPSʹÓöÔѹËõÎļþÒ²½øÐлº´æµÄ·½Ê½À´¼õÉÙѹËõËù´øÀ´µÄÐÔÄÜÓ°Ïì¡£
ÁíÍâ¾ÍÊÇϸ½Ú·½ÃæµÄÐÔÄÜ¿¼ÂÇ£º
1.¶ÔÓÚrequireºÍinclude:
²»ÊÇ˵ʹÓÃÉÏapc¾ÍÒ»ÀÍÓÀÒÝÁË¡£
Include_once(),require_once()±Èinclude£¬requireÒªÂý£¬Òò´Ë¿ÉÒÔ¿¼Âǽ«require_once()»»³Érequire().
ÁíÍâ°üº¬Ò»¸öÎļþ»áÔö¼ÓÐí¶àÄÚ´æʹÓã¬Òò´Ë¶ÔÓÚ´óµÄ°üº¬ÎļþÄãÓ¦¸Ã¿¼ÂÇÈçºÎÇиî³É¶à¸öСÎļþ£¬ÒòΪopcode»º´æÖ»ÄÜÓÅ»¯¼ÓÔØʱ¼ä£¬¶ø²»»á¼õÉÙÄÚ´æʹÓôóС¡£
2.ÉÙÓÃdefine £¬ÔÚÀàÖÐʹÓÃconst±äÁ¿À´´úÌ棬ÒòΪ¾Ý˵ºóÕß¿ÉÒÔ±»opcode»º´æ£¬¶øÇ°Õß²»ÄÜ¡£
3.ʹÓÃCÓïÑÔ¡£ºÜ¶àÈËÈÏΪ“ÄãÓ¦¸Ãµ½´ï²»µ½ÕâÖÖÓÅ»¯ÐèÇó°É”£¬µ«ÊÇȷʵÎÒÔÚдһ¸öÍƼöϵͳµÄʱºòÓöµ½Õâ¸öÐèÇó£¬ÈçºÎÔÚphpÖÐʹÓÃcÀ´ÓÅ»¯ÐÔÄÜÕâ¸öÎÊÌâÁô¸øÒÔºó°É£¬µÈÎÒÑо¿Ã÷°×ÁËÔÙÌù¡£
4.ʹÓÃÃæÏò¹ý³Ì´úÌæÃæÏò¶ÔÏó¡£¾ßÌåÔÒò²»ÖªµÀΪʲô¡£ÁíÍâhttp://www.javaeye.com/topic/143440
ÕâƪÎÄÕÂÖÐÌáµ½µÄ”phpµÄ×î¼Ñʵ¼ù¾ÍÊÇÊý×é±à³Ì”Ò²ºÜÓÐÐÂÒ⣬´ó²¿·ÖÒ²ÊÇ»ùÓÚÐÔÄܵĿ¼ÂÇ¡£
ÁíÍâһЩСµÄÓÅ»¯¼¼ÇÉ£¬ÎÒÕâÀï¾Í²»ËµÁË£¬¿´ÏÂÃæÁ´½Ó¡£
40ÌõÓÅ»¯PHP´úÂëµÄ
Ïà¹ØÎĵµ£º
ÈçºÎ´´½¨ÎÒÃǵĵÚÒ»¸öPHPÒ³ÃæÄØ£¿·Ç³£¼òµ¥µÄ£¡Ñ¡ÔñÎÒÃÇʹÓõÄÒ»¸ö×îºÃµÄÉè¼Æ¹¤¾ß£¬µ±È»ÄãÒ²¿ÉÒÔ Ö»Ê¹ÓüÇʱ¾¡£´´½¨Ö®ºó¼ÇµÃÒª±£´æΪÀ©Õ¹ÃûΪPHPµÄÎļþ£¬È»ºó´«µ½ÎÒÃǵķþÎñÆ÷
ÉÏ¡£
¡¡¡¡ÔÚ±àдPHP³ÌÐò֮ǰͨ³£ÎÒÃÇÐèÒªÅäÖÃÎÒÃǵĻ·¾³£¬Ò²¾ÍÊÇ˵·þÎñÆ÷
ÒªÖ§³ÖPHP²ÅÄÜÐа¡
¡¡¡¡Ò»¡¢PHPµÄ»ù±¾½á¹¹£º
¡¡¡¡Ê¹ÓÃIncl ......
ÍøÉϹØÓÚÕâÀàµÄÌû×ÓÕæµÄºÜ¶à£¬µ«ÊÇÎÒÊÔÁ˺ܶ࣬ÀýÈç°Ñphp plus for eclipse ÏÂÔØÏÂÀ´£¬½âѹºó·Åµ½EclipseµÄpluginÀïÃ棬µ«ÊDz»ÖªµÀΪʲô£¬¶¼²»¹ÜÓá£
ÎÒ´ÓÍøÉÏÕÒµ½ÁËÒ»ÖֱȽϼòµ¥µÄ·½·¨£ºÄǾÍÊÇÓÉEclipse×Ô¼ºÀ´¸üÐÂ×Ô¼ºµÄ×é¼þ£¬ÕâÑùµÄ·½·¨Ê¡È¥Á˺ܶàµÄÅäÖ㬿ÉÒÔÖ±½ÓÄ ......
OpenX adserver version 2.8.1 and lower is vulnerable to remote code
execution. To be exploited, this vulnerability requires banner / file
upload permissions, such as granted to the 'advertiser' and
'administrator' roles.
This vulnerability is caused by the (insecure) file upload mechanism of
af ......
ʹÓÃphpµÄ³£¼ûÎÊÌâÊÇ£º±àÒëphpʱÍü¼ÇÌí¼ÓijÀ©Õ¹£¬ºóÀ´ÏëÌí¼ÓÀ©Õ¹£¬µ«ÊÇÒòΪ°²×°phpºóÓÖ×°ÁËһЩ¶«Î÷ÈçPEARµÈ£¬²»Ïëɾ³ýĿ¼ÖØ×°£¬±ð˵£¬php»¹ÕæÓÐÕâÑùµÄ¹¦ÄÜ¡£
¡¡¡¡ÎÒûÓÐÔÚÊÖ²áÖп´µ½¡£
¡¡¡¡ÈçÎÒÏëÔö¼ÓbcmathÖ§³Ö£¬ÕâÊÇÒ»¸öÖ§³Ö´óÕûÊý¼ÆËãµÄÀ©Õ¹¡£windows×Ô´ø¶øÇÒÄÚÖã¬linux“±¾ÀຯÊý½öÔÚ PHP ±àÒëʱÅäÖÃÁË --ena ......
1,Smarty»º´æµÄÅäÖãº
$smarty->cache-dir="Ŀ¼Ãû"; //´´½¨»º´æĿ¼Ãû
$smarty->caching=true; //¿ªÆô»º´æ£¬ÎªfalseµÄʱºò»º´æÎÞЧ
$smarty->cache_lifetime=60; //»º´æʱ¼ä£¬µ¥Î»ÊÇÃë
2,Smarty»º´æµÄʹÓÃÓëÇå³ý
$marty->d ......
