The question is simple, I want to disable the ‘magic quotes’ and ‘register globals’ options in my PHP configuration.
Before I was unaware of these configuration settings, which could cause security issues, but the latest version of my blog software (pivot) has a built-in check for it now.
So far I’ve tried the following ‘solution’: http://blog.dreamhosters.com/kbase/index.cgi?area=3070
This is how my .htaccess file currently looks like:
[quote]php_flag short_open_tag off
php_value register_globals 0
php_flag register_globals off
php_value magic_quotes 0
php_flag magic_quotes off
php_value magic_quotes_gpc 0
php_flag magic_quotes_gpc off[/quote]
No effect however. The “Run PHP as CGI” setting which is talked about is nowhere to be found (anymore?) by the way?!
My current settings:
[quote]PHP Version: 4.4.2
[X] - Extra Web Security
[ ] - FactCGI Support[/quote]
Is there another way without compiling my own PHP or switching to PHP5?
(My phpinfo.php: http://www.bramn.com/phpinfo.php)