Knowledgebase

Why is allow_url_fopen disabled?

The allow_url_fopen function is disabled on all our individual plan and reseller servers for security reasons because it allows the execution of remote scripts within the server.

The allow_url_fopen directive allows, when its value is “On”, to pass urls (http, ftp) to the fopen() function, instead of the physical location of the file. For security reasons, this policy must be disabled.

  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

How to obtain the version of PHP or the modules installed on a server?

To get the PHP version or modules installed on a server, simply run a function in a php file.The...

What is the vulnerability of PHP's mail() function?

There is a growing use of the method of sending mass e-mails through web forms that use PHP to...