Cgi.fix_pathinfo

Whats the recommended setting of these php parameters for nginx server
cgi.fix_pathinfo = 1
cgi.force_redirect = 0

Here I use cgi.fix_pathinfo=0 to enable PATH_INFO
and cgi.force_redirect=1 for security reasons that I dont understand:
http://www.php.net/manual/en/ini.core.php#ini.cgi.force-redirect

You can turn force_redirect off. This setting has no effect on nginx
when using the php as a fastcgi instance. here is more information
http://www.php.net/manual/en/security.cgi-bin.force-redirect.php
It is designed to prevent someone from calling your CGI binary
directly from a url like
http://somedomain.com/cgi-bin/php/path/to/script.php
where that would execute PHP directly. Instead this option makes teh
cgi binary require a redirect on the server side.

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs