Announcement

**ighertesco** · 06-15-2016, 02:04 PM

Hello,

If you have alt-php group installed, it means that your PHP is hardened: http://docs.cloudlinux.com/installation.html

cPanel php tool does not provide hardened PHP.

**ighertesco** · 06-15-2016, 02:45 PM

a bit more information about how to find out, do you use hardened PHP or not:

phpinfo contains the "Configure Command" and the "extension_dir". The contents of the mentioned fields can answer the question whether its our build or not.

For example:

phpinfo()
PHP Version => 5.2.17

System => Linux localhost.localdomain 3.10.0-427.10.1.lve1.4.7.el7.x86_64 #1 SMP Sat Apr 2 12:09:46 EDT 2016 x86_64
Build Date => May 31 2016 02:20:24
Configure Command => ./configure --build=x86_64-redhat-linux-gnu --host=x86_64-redhat-linux-gnu --target=x86_64-redhat-linux-gnu --program-prefix= --prefix=/opt/alt/php52

if you see /opt/alt under Configure Command - this means that you are using hardened PHP

**ddr2pw** · 06-16-2016, 12:46 PM

Hello and thank you for your answer.

Checking if alt-php group is installed probably require yum, that I can use because Im on a shared hosting with no root access.

There is not /opt/alt path under phpinfo() Configure Command. Prefix is /usr/local

Inside /opt/alt/ directory there is a folder called alt-php-config and this list of directories:

php52 php53 php54 php55 php56

**bogdan.sh** · 06-22-2016, 07:58 AM

Hello Marco,

The "/opt/alt" in phpinfo page will be shown only if you select some hardened PHP with a selector (or admin will choose hardened php as default one). If you see /usr/local there it means you do not use hardened now. As you see /opt/alt/ directory with phpXX subdirectories inside then most probably hardened PHP is installed but not activated yet.

**ddr2pw** · 06-22-2016, 12:50 PM

Hello Bogdan, based on your suggestion, I may have an answer.
Php selector on cPanel shows two different php versions: "native (5.4)" and "5.4".
They may appear the same version, but this is not really true.
My tests above were done with "native (5.4)" that was the host default choice.
If I switch to version "5.4" , phpinfo.php shows a completely different set of information:
under "Configure Command" the path is always /opt/alt/
Also the build date is different: Mar 9 2016 02:29:25 that correspond to the HardenedPHP version that was announced the very same date on CloudLinux blog post below

СloudLinux Blog

https://cloudlinux.com/cloudlinux-os-blog/entry/beta-hardenedphp-updated-1

Its not the latest version, but maybe the host choice is to update HardenedPhp when they think there is a bug with a severity rating considered high.

**ddr2pw** · 06-22-2016, 12:50 PM

Hello Bogdan, based on your suggestion, I may have an answer.
Php selector on cPanel shows two different php versions: "native (5.4)" and "5.4".
They may appear the same version, but this is not really true.
My tests above were done with "native (5.4)" that was the host default choice.
If I switch to version "5.4" , phpinfo.php shows a completely different set of information:
under "Configure Command" the path is always /opt/alt/
Also the build date is different: Mar 9 2016 02:29:25 that correspond to the HardenedPHP version that was announced the very same date on CloudLinux blog post below

СloudLinux Blog

https://cloudlinux.com/cloudlinux-os-blog/entry/beta-hardenedphp-updated-1

Its not the latest version, but maybe the host choice is to update HardenedPhp when they think there is a bug with a severity rating considered high.

**bogdan.sh** · 06-22-2016, 02:25 PM

Yes, that is correct. Native version is not hardened while any other is. I would not pay much attention to comparing build date and release day, but overall it should be close (we build it then test on our environment before release to beta).

Announcement

Hot to check if my webhost is using HardenedPHP ?

Hot to check if my webhost is using HardenedPHP ?

Comment

Comment

Comment

Comment

Comment

Comment

Comment