1[PHP] 2 3;;;;;;;;;;;;;;;;;;; 4; About php.ini ; 5;;;;;;;;;;;;;;;;;;; 6; PHP's initialization file, generally called php.ini, is responsible for 7; configuring many of the aspects of PHP's behavior. 8 9; PHP attempts to find and load this configuration from a number of locations. 10; The following is a summary of its search order: 11; 1. SAPI module specific location. 12; 2. The PHPRC environment variable. (As of PHP 5.2.0) 13; 3. A number of predefined registry keys on Windows (As of PHP 5.2.0) 14; 4. Current working directory (except CLI) 15; 5. The web server's directory (for SAPI modules), or directory of PHP 16; (otherwise in Windows) 17; 6. The directory from the --with-config-file-path compile time option, or the 18; Windows directory (usually C:\windows) 19; See the PHP docs for more specific information. 20; https://php.net/configuration.file 21 22; The syntax of the file is extremely simple. Whitespace and lines 23; beginning with a semicolon are silently ignored (as you probably guessed). 24; Section headers (e.g. [Foo]) are also silently ignored, even though 25; they might mean something in the future. 26 27; Directives following the section heading [PATH=/www/mysite] only 28; apply to PHP files in the /www/mysite directory. Directives 29; following the section heading [HOST=www.example.com] only apply to 30; PHP files served from www.example.com. Directives set in these 31; special sections cannot be overridden by user-defined INI files or 32; at runtime. Currently, [PATH=] and [HOST=] sections only work under 33; CGI/FastCGI. 34; https://php.net/ini.sections 35 36; Directives are specified using the following syntax: 37; directive = value 38; Directive names are *case sensitive* - foo=bar is different from FOO=bar. 39; Directives are variables used to configure PHP or PHP extensions. 40; There is no name validation. If PHP can't find an expected 41; directive because it is not set or is mistyped, a default value will be used. 42 43; The value can be a string, a number, a PHP constant (e.g. E_ALL or M_PI), one 44; of the INI constants (On, Off, True, False, Yes, No and None) or an expression 45; (e.g. E_ALL & ~E_NOTICE), a quoted string ("bar"), or a reference to a 46; previously set variable or directive (e.g. ${foo}) 47 48; Expressions in the INI file are limited to bitwise operators and parentheses: 49; | bitwise OR 50; ^ bitwise XOR 51; & bitwise AND 52; ~ bitwise NOT 53; ! boolean NOT 54 55; Boolean flags can be turned on using the values 1, On, True or Yes. 56; They can be turned off using the values 0, Off, False or No. 57 58; An empty string can be denoted by simply not writing anything after the equal 59; sign, or by using the None keyword: 60 61; foo = ; sets foo to an empty string 62; foo = None ; sets foo to an empty string 63; foo = "None" ; sets foo to the string 'None' 64 65; If you use constants in your value, and these constants belong to a 66; dynamically loaded extension (either a PHP extension or a Zend extension), 67; you may only use these constants *after* the line that loads the extension. 68 69;;;;;;;;;;;;;;;;;;; 70; About this file ; 71;;;;;;;;;;;;;;;;;;; 72; PHP comes packaged with two INI files. One that is recommended to be used 73; in production environments and one that is recommended to be used in 74; development environments. 75 76; php.ini-production contains settings which hold security, performance and 77; best practices at its core. But please be aware, these settings may break 78; compatibility with older or less security conscience applications. We 79; recommending using the production ini in production and testing environments. 80 81; php.ini-development is very similar to its production variant, except it is 82; much more verbose when it comes to errors. We recommend using the 83; development version only in development environments, as errors shown to 84; application users can inadvertently leak otherwise secure information. 85 86; This is the php.ini-production INI file. 87 88;;;;;;;;;;;;;;;;;;; 89; Quick Reference ; 90;;;;;;;;;;;;;;;;;;; 91 92; The following are all the settings which are different in either the production 93; or development versions of the INIs with respect to PHP's default behavior. 94; Please see the actual settings later in the document for more details as to why 95; we recommend these changes in PHP's behavior. 96 97; display_errors 98; Default Value: On 99; Development Value: On 100; Production Value: Off 101 102; display_startup_errors 103; Default Value: On 104; Development Value: On 105; Production Value: Off 106 107; error_reporting 108; Default Value: E_ALL 109; Development Value: E_ALL 110; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT 111 112; log_errors 113; Default Value: Off 114; Development Value: On 115; Production Value: On 116 117; max_input_time 118; Default Value: -1 (Unlimited) 119; Development Value: 60 (60 seconds) 120; Production Value: 60 (60 seconds) 121 122; output_buffering 123; Default Value: Off 124; Development Value: 4096 125; Production Value: 4096 126 127; register_argc_argv 128; Default Value: On 129; Development Value: Off 130; Production Value: Off 131 132; request_order 133; Default Value: None 134; Development Value: "GP" 135; Production Value: "GP" 136 137; session.gc_divisor 138; Default Value: 100 139; Development Value: 1000 140; Production Value: 1000 141 142; session.sid_bits_per_character 143; Default Value: 4 144; Development Value: 5 145; Production Value: 5 146 147; short_open_tag 148; Default Value: On 149; Development Value: Off 150; Production Value: Off 151 152; variables_order 153; Default Value: "EGPCS" 154; Development Value: "GPCS" 155; Production Value: "GPCS" 156 157; zend.exception_ignore_args 158; Default Value: Off 159; Development Value: Off 160; Production Value: On 161 162; zend.exception_string_param_max_len 163; Default Value: 15 164; Development Value: 15 165; Production Value: 0 166 167;;;;;;;;;;;;;;;;;;;; 168; php.ini Options ; 169;;;;;;;;;;;;;;;;;;;; 170; Name for user-defined php.ini (.htaccess) files. Default is ".user.ini" 171;user_ini.filename = ".user.ini" 172 173; To disable this feature set this option to an empty value 174;user_ini.filename = 175 176; TTL for user-defined php.ini files (time-to-live) in seconds. Default is 300 seconds (5 minutes) 177;user_ini.cache_ttl = 300 178 179;;;;;;;;;;;;;;;;;;;; 180; Language Options ; 181;;;;;;;;;;;;;;;;;;;; 182 183; Enable the PHP scripting language engine under Apache. 184; https://php.net/engine 185engine = On 186 187; This directive determines whether or not PHP will recognize code between 188; <? and ?> tags as PHP source which should be processed as such. It is 189; generally recommended that <?php and ?> should be used and that this feature 190; should be disabled, as enabling it may result in issues when generating XML 191; documents, however this remains supported for backward compatibility reasons. 192; Note that this directive does not control the <?= shorthand tag, which can be 193; used regardless of this directive. 194; Default Value: On 195; Development Value: Off 196; Production Value: Off 197; https://php.net/short-open-tag 198short_open_tag = Off 199 200; The number of significant digits displayed in floating point numbers. 201; https://php.net/precision 202precision = 14 203 204; Output buffering is a mechanism for controlling how much output data 205; (excluding headers and cookies) PHP should keep internally before pushing that 206; data to the client. If your application's output exceeds this setting, PHP 207; will send that data in chunks of roughly the size you specify. 208; Turning on this setting and managing its maximum buffer size can yield some 209; interesting side-effects depending on your application and web server. 210; You may be able to send headers and cookies after you've already sent output 211; through print or echo. You also may see performance benefits if your server is 212; emitting less packets due to buffered output versus PHP streaming the output 213; as it gets it. On production servers, 4096 bytes is a good setting for performance 214; reasons. 215; Note: Output buffering can also be controlled via Output Buffering Control 216; functions. 217; Possible Values: 218; On = Enabled and buffer is unlimited. (Use with caution) 219; Off = Disabled 220; Integer = Enables the buffer and sets its maximum size in bytes. 221; Note: This directive is hardcoded to Off for the CLI SAPI 222; Default Value: Off 223; Development Value: 4096 224; Production Value: 4096 225; https://php.net/output-buffering 226output_buffering = 4096 227 228; You can redirect all of the output of your scripts to a function. For 229; example, if you set output_handler to "mb_output_handler", character 230; encoding will be transparently converted to the specified encoding. 231; Setting any output handler automatically turns on output buffering. 232; Note: People who wrote portable scripts should not depend on this ini 233; directive. Instead, explicitly set the output handler using ob_start(). 234; Using this ini directive may cause problems unless you know what script 235; is doing. 236; Note: You cannot use both "mb_output_handler" with "ob_iconv_handler" 237; and you cannot use both "ob_gzhandler" and "zlib.output_compression". 238; Note: output_handler must be empty if this is set 'On' !!!! 239; Instead you must use zlib.output_handler. 240; https://php.net/output-handler 241;output_handler = 242 243; URL rewriter function rewrites URL on the fly by using 244; output buffer. You can set target tags by this configuration. 245; "form" tag is special tag. It will add hidden input tag to pass values. 246; Refer to session.trans_sid_tags for usage. 247; Default Value: "form=" 248; Development Value: "form=" 249; Production Value: "form=" 250;url_rewriter.tags 251 252; URL rewriter will not rewrite absolute URL nor form by default. To enable 253; absolute URL rewrite, allowed hosts must be defined at RUNTIME. 254; Refer to session.trans_sid_hosts for more details. 255; Default Value: "" 256; Development Value: "" 257; Production Value: "" 258;url_rewriter.hosts 259 260; Transparent output compression using the zlib library 261; Valid values for this option are 'off', 'on', or a specific buffer size 262; to be used for compression (default is 4KB) 263; Note: Resulting chunk size may vary due to nature of compression. PHP 264; outputs chunks that are few hundreds bytes each as a result of 265; compression. If you prefer a larger chunk size for better 266; performance, enable output_buffering in addition. 267; Note: You need to use zlib.output_handler instead of the standard 268; output_handler, or otherwise the output will be corrupted. 269; https://php.net/zlib.output-compression 270zlib.output_compression = Off 271 272; https://php.net/zlib.output-compression-level 273;zlib.output_compression_level = -1 274 275; You cannot specify additional output handlers if zlib.output_compression 276; is activated here. This setting does the same as output_handler but in 277; a different order. 278; https://php.net/zlib.output-handler 279;zlib.output_handler = 280 281; Implicit flush tells PHP to tell the output layer to flush itself 282; automatically after every output block. This is equivalent to calling the 283; PHP function flush() after each and every call to print() or echo() and each 284; and every HTML block. Turning this option on has serious performance 285; implications and is generally recommended for debugging purposes only. 286; https://php.net/implicit-flush 287; Note: This directive is hardcoded to On for the CLI SAPI 288implicit_flush = Off 289 290; The unserialize callback function will be called (with the undefined class' 291; name as parameter), if the unserializer finds an undefined class 292; which should be instantiated. A warning appears if the specified function is 293; not defined, or if the function doesn't include/implement the missing class. 294; So only set this entry, if you really want to implement such a 295; callback-function. 296unserialize_callback_func = 297 298; The unserialize_max_depth specifies the default depth limit for unserialized 299; structures. Setting the depth limit too high may result in stack overflows 300; during unserialization. The unserialize_max_depth ini setting can be 301; overridden by the max_depth option on individual unserialize() calls. 302; A value of 0 disables the depth limit. 303;unserialize_max_depth = 4096 304 305; When floats & doubles are serialized, store serialize_precision significant 306; digits after the floating point. The default value ensures that when floats 307; are decoded with unserialize, the data will remain the same. 308; The value is also used for json_encode when encoding double values. 309; If -1 is used, then dtoa mode 0 is used which automatically select the best 310; precision. 311serialize_precision = -1 312 313; open_basedir, if set, limits all file operations to the defined directory 314; and below. This directive makes most sense if used in a per-directory 315; or per-virtualhost web server configuration file. 316; Note: disables the realpath cache 317; https://php.net/open-basedir 318;open_basedir = 319 320; This directive allows you to disable certain functions. 321; It receives a comma-delimited list of function names. 322; https://php.net/disable-functions 323disable_functions = 324 325; This directive allows you to disable certain classes. 326; It receives a comma-delimited list of class names. 327; https://php.net/disable-classes 328disable_classes = 329 330; Colors for Syntax Highlighting mode. Anything that's acceptable in 331; <span style="color: ???????"> would work. 332; https://php.net/syntax-highlighting 333;highlight.string = #DD0000 334;highlight.comment = #FF9900 335;highlight.keyword = #007700 336;highlight.default = #0000BB 337;highlight.html = #000000 338 339; If enabled, the request will be allowed to complete even if the user aborts 340; the request. Consider enabling it if executing long requests, which may end up 341; being interrupted by the user or a browser timing out. PHP's default behavior 342; is to disable this feature. 343; https://php.net/ignore-user-abort 344;ignore_user_abort = On 345 346; Determines the size of the realpath cache to be used by PHP. This value should 347; be increased on systems where PHP opens many files to reflect the quantity of 348; the file operations performed. 349; Note: if open_basedir is set, the cache is disabled 350; https://php.net/realpath-cache-size 351;realpath_cache_size = 4096k 352 353; Duration of time, in seconds for which to cache realpath information for a given 354; file or directory. For systems with rarely changing files, consider increasing this 355; value. 356; https://php.net/realpath-cache-ttl 357;realpath_cache_ttl = 120 358 359; Enables or disables the circular reference collector. 360; https://php.net/zend.enable-gc 361zend.enable_gc = On 362 363; If enabled, scripts may be written in encodings that are incompatible with 364; the scanner. CP936, Big5, CP949 and Shift_JIS are the examples of such 365; encodings. To use this feature, mbstring extension must be enabled. 366;zend.multibyte = Off 367 368; Allows to set the default encoding for the scripts. This value will be used 369; unless "declare(encoding=...)" directive appears at the top of the script. 370; Only affects if zend.multibyte is set. 371;zend.script_encoding = 372 373; Allows to include or exclude arguments from stack traces generated for exceptions. 374; In production, it is recommended to turn this setting on to prohibit the output 375; of sensitive information in stack traces 376; Default Value: Off 377; Development Value: Off 378; Production Value: On 379zend.exception_ignore_args = On 380 381; Allows setting the maximum string length in an argument of a stringified stack trace 382; to a value between 0 and 1000000. 383; This has no effect when zend.exception_ignore_args is enabled. 384; Default Value: 15 385; Development Value: 15 386; Production Value: 0 387; In production, it is recommended to set this to 0 to reduce the output 388; of sensitive information in stack traces. 389zend.exception_string_param_max_len = 0 390 391;;;;;;;;;;;;;;;;; 392; Miscellaneous ; 393;;;;;;;;;;;;;;;;; 394 395; Decides whether PHP may expose the fact that it is installed on the server 396; (e.g. by adding its signature to the Web server header). It is no security 397; threat in any way, but it makes it possible to determine whether you use PHP 398; on your server or not. 399; https://php.net/expose-php 400expose_php = On 401 402;;;;;;;;;;;;;;;;;;; 403; Resource Limits ; 404;;;;;;;;;;;;;;;;;;; 405 406; Maximum execution time of each script, in seconds 407; https://php.net/max-execution-time 408; Note: This directive is hardcoded to 0 for the CLI SAPI 409max_execution_time = 30 410 411; Maximum amount of time each script may spend parsing request data. It's a good 412; idea to limit this time on productions servers in order to eliminate unexpectedly 413; long running scripts. 414; Note: This directive is hardcoded to -1 for the CLI SAPI 415; Default Value: -1 (Unlimited) 416; Development Value: 60 (60 seconds) 417; Production Value: 60 (60 seconds) 418; https://php.net/max-input-time 419max_input_time = 60 420 421; Maximum input variable nesting level 422; https://php.net/max-input-nesting-level 423;max_input_nesting_level = 64 424 425; How many GET/POST/COOKIE input variables may be accepted 426;max_input_vars = 1000 427 428; Maximum amount of memory a script may consume 429; https://php.net/memory-limit 430memory_limit = 128M 431 432;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; 433; Error handling and logging ; 434;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; 435 436; This directive informs PHP of which errors, warnings and notices you would like 437; it to take action for. The recommended way of setting values for this 438; directive is through the use of the error level constants and bitwise 439; operators. The error level constants are below here for convenience as well as 440; some common settings and their meanings. 441; By default, PHP is set to take action on all errors, notices and warnings EXCEPT 442; those related to E_NOTICE and E_STRICT, which together cover best practices and 443; recommended coding standards in PHP. For performance reasons, this is the 444; recommend error reporting setting. Your production server shouldn't be wasting 445; resources complaining about best practices and coding standards. That's what 446; development servers and development settings are for. 447; Note: The php.ini-development file has this setting as E_ALL. This 448; means it pretty much reports everything which is exactly what you want during 449; development and early testing. 450; 451; Error Level Constants: 452; E_ALL - All errors and warnings (includes E_STRICT as of PHP 5.4.0) 453; E_ERROR - fatal run-time errors 454; E_RECOVERABLE_ERROR - almost fatal run-time errors 455; E_WARNING - run-time warnings (non-fatal errors) 456; E_PARSE - compile-time parse errors 457; E_NOTICE - run-time notices (these are warnings which often result 458; from a bug in your code, but it's possible that it was 459; intentional (e.g., using an uninitialized variable and 460; relying on the fact it is automatically initialized to an 461; empty string) 462; E_STRICT - run-time notices, enable to have PHP suggest changes 463; to your code which will ensure the best interoperability 464; and forward compatibility of your code 465; E_CORE_ERROR - fatal errors that occur during PHP's initial startup 466; E_CORE_WARNING - warnings (non-fatal errors) that occur during PHP's 467; initial startup 468; E_COMPILE_ERROR - fatal compile-time errors 469; E_COMPILE_WARNING - compile-time warnings (non-fatal errors) 470; E_USER_ERROR - user-generated error message 471; E_USER_WARNING - user-generated warning message 472; E_USER_NOTICE - user-generated notice message 473; E_DEPRECATED - warn about code that will not work in future versions 474; of PHP 475; E_USER_DEPRECATED - user-generated deprecation warnings 476; 477; Common Values: 478; E_ALL (Show all errors, warnings and notices including coding standards.) 479; E_ALL & ~E_NOTICE (Show all errors, except for notices) 480; E_ALL & ~E_NOTICE & ~E_STRICT (Show all errors, except for notices and coding standards warnings.) 481; E_COMPILE_ERROR|E_RECOVERABLE_ERROR|E_ERROR|E_CORE_ERROR (Show only errors) 482; Default Value: E_ALL 483; Development Value: E_ALL 484; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT 485; https://php.net/error-reporting 486error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT 487 488; This directive controls whether or not and where PHP will output errors, 489; notices and warnings too. Error output is very useful during development, but 490; it could be very dangerous in production environments. Depending on the code 491; which is triggering the error, sensitive information could potentially leak 492; out of your application such as database usernames and passwords or worse. 493; For production environments, we recommend logging errors rather than 494; sending them to STDOUT. 495; Possible Values: 496; Off = Do not display any errors 497; stderr = Display errors to STDERR (affects only CGI/CLI binaries!) 498; On or stdout = Display errors to STDOUT 499; Default Value: On 500; Development Value: On 501; Production Value: Off 502; https://php.net/display-errors 503display_errors = Off 504 505; The display of errors which occur during PHP's startup sequence are handled 506; separately from display_errors. We strongly recommend you set this to 'off' 507; for production servers to avoid leaking configuration details. 508; Default Value: On 509; Development Value: On 510; Production Value: Off 511; https://php.net/display-startup-errors 512display_startup_errors = Off 513 514; Besides displaying errors, PHP can also log errors to locations such as a 515; server-specific log, STDERR, or a location specified by the error_log 516; directive found below. While errors should not be displayed on productions 517; servers they should still be monitored and logging is a great way to do that. 518; Default Value: Off 519; Development Value: On 520; Production Value: On 521; https://php.net/log-errors 522log_errors = On 523 524; Do not log repeated messages. Repeated errors must occur in same file on same 525; line unless ignore_repeated_source is set true. 526; https://php.net/ignore-repeated-errors 527ignore_repeated_errors = Off 528 529; Ignore source of message when ignoring repeated messages. When this setting 530; is On you will not log errors with repeated messages from different files or 531; source lines. 532; https://php.net/ignore-repeated-source 533ignore_repeated_source = Off 534 535; If this parameter is set to Off, then memory leaks will not be shown (on 536; stdout or in the log). This is only effective in a debug compile, and if 537; error reporting includes E_WARNING in the allowed list 538; https://php.net/report-memleaks 539report_memleaks = On 540 541; This setting is off by default. 542;report_zend_debug = 0 543 544; Turn off normal error reporting and emit XML-RPC error XML 545; https://php.net/xmlrpc-errors 546;xmlrpc_errors = 0 547 548; An XML-RPC faultCode 549;xmlrpc_error_number = 0 550 551; When PHP displays or logs an error, it has the capability of formatting the 552; error message as HTML for easier reading. This directive controls whether 553; the error message is formatted as HTML or not. 554; Note: This directive is hardcoded to Off for the CLI SAPI 555; https://php.net/html-errors 556;html_errors = On 557 558; If html_errors is set to On *and* docref_root is not empty, then PHP 559; produces clickable error messages that direct to a page describing the error 560; or function causing the error in detail. 561; You can download a copy of the PHP manual from https://php.net/docs 562; and change docref_root to the base URL of your local copy including the 563; leading '/'. You must also specify the file extension being used including 564; the dot. PHP's default behavior is to leave these settings empty, in which 565; case no links to documentation are generated. 566; Note: Never use this feature for production boxes. 567; https://php.net/docref-root 568; Examples 569;docref_root = "/phpmanual/" 570 571; https://php.net/docref-ext 572;docref_ext = .html 573 574; String to output before an error message. PHP's default behavior is to leave 575; this setting blank. 576; https://php.net/error-prepend-string 577; Example: 578;error_prepend_string = "<span style='color: #ff0000'>" 579 580; String to output after an error message. PHP's default behavior is to leave 581; this setting blank. 582; https://php.net/error-append-string 583; Example: 584;error_append_string = "</span>" 585 586; Log errors to specified file. PHP's default behavior is to leave this value 587; empty. 588; https://php.net/error-log 589; Example: 590;error_log = php_errors.log 591; Log errors to syslog (Event Log on Windows). 592;error_log = syslog 593 594; The syslog ident is a string which is prepended to every message logged 595; to syslog. Only used when error_log is set to syslog. 596;syslog.ident = php 597 598; The syslog facility is used to specify what type of program is logging 599; the message. Only used when error_log is set to syslog. 600;syslog.facility = user 601 602; Set this to disable filtering control characters (the default). 603; Some loggers only accept NVT-ASCII, others accept anything that's not 604; control characters. If your logger accepts everything, then no filtering 605; is needed at all. 606; Allowed values are: 607; ascii (all printable ASCII characters and NL) 608; no-ctrl (all characters except control characters) 609; all (all characters) 610; raw (like "all", but messages are not split at newlines) 611; https://php.net/syslog.filter 612;syslog.filter = ascii 613 614;windows.show_crt_warning 615; Default value: 0 616; Development value: 0 617; Production value: 0 618 619;;;;;;;;;;;;;;;;; 620; Data Handling ; 621;;;;;;;;;;;;;;;;; 622 623; The separator used in PHP generated URLs to separate arguments. 624; PHP's default setting is "&". 625; https://php.net/arg-separator.output 626; Example: 627;arg_separator.output = "&" 628 629; List of separator(s) used by PHP to parse input URLs into variables. 630; PHP's default setting is "&". 631; NOTE: Every character in this directive is considered as separator! 632; https://php.net/arg-separator.input 633; Example: 634;arg_separator.input = ";&" 635 636; This directive determines which super global arrays are registered when PHP 637; starts up. G,P,C,E & S are abbreviations for the following respective super 638; globals: GET, POST, COOKIE, ENV and SERVER. There is a performance penalty 639; paid for the registration of these arrays and because ENV is not as commonly 640; used as the others, ENV is not recommended on productions servers. You 641; can still get access to the environment variables through getenv() should you 642; need to. 643; Default Value: "EGPCS" 644; Development Value: "GPCS" 645; Production Value: "GPCS"; 646; https://php.net/variables-order 647variables_order = "GPCS" 648 649; This directive determines which super global data (G,P & C) should be 650; registered into the super global array REQUEST. If so, it also determines 651; the order in which that data is registered. The values for this directive 652; are specified in the same manner as the variables_order directive, 653; EXCEPT one. Leaving this value empty will cause PHP to use the value set 654; in the variables_order directive. It does not mean it will leave the super 655; globals array REQUEST empty. 656; Default Value: None 657; Development Value: "GP" 658; Production Value: "GP" 659; https://php.net/request-order 660request_order = "GP" 661 662; This directive determines whether PHP registers $argv & $argc each time it 663; runs. $argv contains an array of all the arguments passed to PHP when a script 664; is invoked. $argc contains an integer representing the number of arguments 665; that were passed when the script was invoked. These arrays are extremely 666; useful when running scripts from the command line. When this directive is 667; enabled, registering these variables consumes CPU cycles and memory each time 668; a script is executed. For performance reasons, this feature should be disabled 669; on production servers. 670; Note: This directive is hardcoded to On for the CLI SAPI 671; Default Value: On 672; Development Value: Off 673; Production Value: Off 674; https://php.net/register-argc-argv 675register_argc_argv = Off 676 677; When enabled, the ENV, REQUEST and SERVER variables are created when they're 678; first used (Just In Time) instead of when the script starts. If these 679; variables are not used within a script, having this directive on will result 680; in a performance gain. The PHP directive register_argc_argv must be disabled 681; for this directive to have any effect. 682; https://php.net/auto-globals-jit 683auto_globals_jit = On 684 685; Whether PHP will read the POST data. 686; This option is enabled by default. 687; Most likely, you won't want to disable this option globally. It causes $_POST 688; and $_FILES to always be empty; the only way you will be able to read the 689; POST data will be through the php://input stream wrapper. This can be useful 690; to proxy requests or to process the POST data in a memory efficient fashion. 691; https://php.net/enable-post-data-reading 692;enable_post_data_reading = Off 693 694; Maximum size of POST data that PHP will accept. 695; Its value may be 0 to disable the limit. It is ignored if POST data reading 696; is disabled through enable_post_data_reading. 697; https://php.net/post-max-size 698post_max_size = 8M 699 700; Automatically add files before PHP document. 701; https://php.net/auto-prepend-file 702auto_prepend_file = 703 704; Automatically add files after PHP document. 705; https://php.net/auto-append-file 706auto_append_file = 707 708; By default, PHP will output a media type using the Content-Type header. To 709; disable this, simply set it to be empty. 710; 711; PHP's built-in default media type is set to text/html. 712; https://php.net/default-mimetype 713default_mimetype = "text/html" 714 715; PHP's default character set is set to UTF-8. 716; https://php.net/default-charset 717default_charset = "UTF-8" 718 719; PHP internal character encoding is set to empty. 720; If empty, default_charset is used. 721; https://php.net/internal-encoding 722;internal_encoding = 723 724; PHP input character encoding is set to empty. 725; If empty, default_charset is used. 726; https://php.net/input-encoding 727;input_encoding = 728 729; PHP output character encoding is set to empty. 730; If empty, default_charset is used. 731; See also output_buffer. 732; https://php.net/output-encoding 733;output_encoding = 734 735;;;;;;;;;;;;;;;;;;;;;;;;; 736; Paths and Directories ; 737;;;;;;;;;;;;;;;;;;;;;;;;; 738 739; UNIX: "/path1:/path2" 740;include_path = ".:/php/includes" 741; 742; Windows: "\path1;\path2" 743;include_path = ".;c:\php\includes" 744; 745; PHP's default setting for include_path is ".;/path/to/php/pear" 746; https://php.net/include-path 747 748; The root of the PHP pages, used only if nonempty. 749; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root 750; if you are running php as a CGI under any web server (other than IIS) 751; see documentation for security issues. The alternate is to use the 752; cgi.force_redirect configuration below 753; https://php.net/doc-root 754doc_root = 755 756; The directory under which PHP opens the script using /~username used only 757; if nonempty. 758; https://php.net/user-dir 759user_dir = 760 761; Directory in which the loadable extensions (modules) reside. 762; https://php.net/extension-dir 763;extension_dir = "./" 764; On windows: 765;extension_dir = "ext" 766 767; Directory where the temporary files should be placed. 768; Defaults to the system default (see sys_get_temp_dir) 769;sys_temp_dir = "/tmp" 770 771; Whether or not to enable the dl() function. The dl() function does NOT work 772; properly in multithreaded servers, such as IIS or Zeus, and is automatically 773; disabled on them. 774; https://php.net/enable-dl 775enable_dl = Off 776 777; cgi.force_redirect is necessary to provide security running PHP as a CGI under 778; most web servers. Left undefined, PHP turns this on by default. You can 779; turn it off here AT YOUR OWN RISK 780; **You CAN safely turn this off for IIS, in fact, you MUST.** 781; https://php.net/cgi.force-redirect 782;cgi.force_redirect = 1 783 784; if cgi.nph is enabled it will force cgi to always sent Status: 200 with 785; every request. PHP's default behavior is to disable this feature. 786;cgi.nph = 1 787 788; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape 789; (iPlanet) web servers, you MAY need to set an environment variable name that PHP 790; will look for to know it is OK to continue execution. Setting this variable MAY 791; cause security issues, KNOW WHAT YOU ARE DOING FIRST. 792; https://php.net/cgi.redirect-status-env 793;cgi.redirect_status_env = 794 795; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's 796; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok 797; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting 798; this to 1 will cause PHP CGI to fix its paths to conform to the spec. A setting 799; of zero causes PHP to behave as before. Default is 1. You should fix your scripts 800; to use SCRIPT_FILENAME rather than PATH_TRANSLATED. 801; https://php.net/cgi.fix-pathinfo 802;cgi.fix_pathinfo=1 803 804; if cgi.discard_path is enabled, the PHP CGI binary can safely be placed outside 805; of the web tree and people will not be able to circumvent .htaccess security. 806;cgi.discard_path=1 807 808; FastCGI under IIS supports the ability to impersonate 809; security tokens of the calling client. This allows IIS to define the 810; security context that the request runs under. mod_fastcgi under Apache 811; does not currently support this feature (03/17/2002) 812; Set to 1 if running under IIS. Default is zero. 813; https://php.net/fastcgi.impersonate 814;fastcgi.impersonate = 1 815 816; Disable logging through FastCGI connection. PHP's default behavior is to enable 817; this feature. 818;fastcgi.logging = 0 819 820; cgi.rfc2616_headers configuration option tells PHP what type of headers to 821; use when sending HTTP response code. If set to 0, PHP sends Status: header that 822; is supported by Apache. When this option is set to 1, PHP will send 823; RFC2616 compliant header. 824; Default is zero. 825; https://php.net/cgi.rfc2616-headers 826;cgi.rfc2616_headers = 0 827 828; cgi.check_shebang_line controls whether CGI PHP checks for line starting with #! 829; (shebang) at the top of the running script. This line might be needed if the 830; script support running both as stand-alone script and via PHP CGI<. PHP in CGI 831; mode skips this line and ignores its content if this directive is turned on. 832; https://php.net/cgi.check-shebang-line 833;cgi.check_shebang_line=1 834 835;;;;;;;;;;;;;;;; 836; File Uploads ; 837;;;;;;;;;;;;;;;; 838 839; Whether to allow HTTP file uploads. 840; https://php.net/file-uploads 841file_uploads = On 842 843; Temporary directory for HTTP uploaded files (will use system default if not 844; specified). 845; https://php.net/upload-tmp-dir 846;upload_tmp_dir = 847 848; Maximum allowed size for uploaded files. 849; https://php.net/upload-max-filesize 850upload_max_filesize = 2M 851 852; Maximum number of files that can be uploaded via a single request 853max_file_uploads = 20 854 855;;;;;;;;;;;;;;;;;; 856; Fopen wrappers ; 857;;;;;;;;;;;;;;;;;; 858 859; Whether to allow the treatment of URLs (like http:// or ftp://) as files. 860; https://php.net/allow-url-fopen 861allow_url_fopen = On 862 863; Whether to allow include/require to open URLs (like https:// or ftp://) as files. 864; https://php.net/allow-url-include 865allow_url_include = Off 866 867; Define the anonymous ftp password (your email address). PHP's default setting 868; for this is empty. 869; https://php.net/from 870;from="john@doe.com" 871 872; Define the User-Agent string. PHP's default setting for this is empty. 873; https://php.net/user-agent 874;user_agent="PHP" 875 876; Default timeout for socket based streams (seconds) 877; https://php.net/default-socket-timeout 878default_socket_timeout = 60 879 880; If your scripts have to deal with files from Macintosh systems, 881; or you are running on a Mac and need to deal with files from 882; unix or win32 systems, setting this flag will cause PHP to 883; automatically detect the EOL character in those files so that 884; fgets() and file() will work regardless of the source of the file. 885; https://php.net/auto-detect-line-endings 886;auto_detect_line_endings = Off 887 888;;;;;;;;;;;;;;;;;;;;;; 889; Dynamic Extensions ; 890;;;;;;;;;;;;;;;;;;;;;; 891 892; If you wish to have an extension loaded automatically, use the following 893; syntax: 894; 895; extension=modulename 896; 897; For example: 898; 899; extension=mysqli 900; 901; When the extension library to load is not located in the default extension 902; directory, You may specify an absolute path to the library file: 903; 904; extension=/path/to/extension/mysqli.so 905; 906; Note : The syntax used in previous PHP versions ('extension=<ext>.so' and 907; 'extension='php_<ext>.dll') is supported for legacy reasons and may be 908; deprecated in a future PHP major version. So, when it is possible, please 909; move to the new ('extension=<ext>) syntax. 910; 911; Notes for Windows environments : 912; 913; - Many DLL files are located in the extensions/ (PHP 4) or ext/ (PHP 5+) 914; extension folders as well as the separate PECL DLL download (PHP 5+). 915; Be sure to appropriately set the extension_dir directive. 916; 917;extension=bz2 918;extension=curl 919;extension=ffi 920;extension=ftp 921;extension=fileinfo 922;extension=gd 923;extension=gettext 924;extension=gmp 925;extension=intl 926;extension=imap 927;extension=ldap 928;extension=mbstring 929;extension=exif ; Must be after mbstring as it depends on it 930;extension=mysqli 931;extension=oci8_12c ; Use with Oracle Database 12c Instant Client 932;extension=oci8_19 ; Use with Oracle Database 19 Instant Client 933;extension=odbc 934;extension=openssl 935;extension=pdo_firebird 936;extension=pdo_mysql 937;extension=pdo_oci 938;extension=pdo_odbc 939;extension=pdo_pgsql 940;extension=pdo_sqlite 941;extension=pgsql 942;extension=shmop 943 944; The MIBS data available in the PHP distribution must be installed. 945; See https://www.php.net/manual/en/snmp.installation.php 946;extension=snmp 947 948;extension=soap 949;extension=sockets 950;extension=sodium 951;extension=sqlite3 952;extension=tidy 953;extension=xsl 954 955;zend_extension=opcache 956 957;;;;;;;;;;;;;;;;;;; 958; Module Settings ; 959;;;;;;;;;;;;;;;;;;; 960 961[CLI Server] 962; Whether the CLI web server uses ANSI color coding in its terminal output. 963cli_server.color = On 964 965[Date] 966; Defines the default timezone used by the date functions 967; https://php.net/date.timezone 968;date.timezone = 969 970; https://php.net/date.default-latitude 971;date.default_latitude = 31.7667 972 973; https://php.net/date.default-longitude 974;date.default_longitude = 35.2333 975 976; https://php.net/date.sunrise-zenith 977;date.sunrise_zenith = 90.833333 978 979; https://php.net/date.sunset-zenith 980;date.sunset_zenith = 90.833333 981 982[filter] 983; https://php.net/filter.default 984;filter.default = unsafe_raw 985 986; https://php.net/filter.default-flags 987;filter.default_flags = 988 989[iconv] 990; Use of this INI entry is deprecated, use global input_encoding instead. 991; If empty, default_charset or input_encoding or iconv.input_encoding is used. 992; The precedence is: default_charset < input_encoding < iconv.input_encoding 993;iconv.input_encoding = 994 995; Use of this INI entry is deprecated, use global internal_encoding instead. 996; If empty, default_charset or internal_encoding or iconv.internal_encoding is used. 997; The precedence is: default_charset < internal_encoding < iconv.internal_encoding 998;iconv.internal_encoding = 999 1000; Use of this INI entry is deprecated, use global output_encoding instead. 1001; If empty, default_charset or output_encoding or iconv.output_encoding is used. 1002; The precedence is: default_charset < output_encoding < iconv.output_encoding 1003; To use an output encoding conversion, iconv's output handler must be set 1004; otherwise output encoding conversion cannot be performed. 1005;iconv.output_encoding = 1006 1007[imap] 1008; rsh/ssh logins are disabled by default. Use this INI entry if you want to 1009; enable them. Note that the IMAP library does not filter mailbox names before 1010; passing them to rsh/ssh command, thus passing untrusted data to this function 1011; with rsh/ssh enabled is insecure. 1012;imap.enable_insecure_rsh=0 1013 1014[intl] 1015;intl.default_locale = 1016; This directive allows you to produce PHP errors when some error 1017; happens within intl functions. The value is the level of the error produced. 1018; Default is 0, which does not produce any errors. 1019;intl.error_level = E_WARNING 1020;intl.use_exceptions = 0 1021 1022[sqlite3] 1023; Directory pointing to SQLite3 extensions 1024; https://php.net/sqlite3.extension-dir 1025;sqlite3.extension_dir = 1026 1027; SQLite defensive mode flag (only available from SQLite 3.26+) 1028; When the defensive flag is enabled, language features that allow ordinary 1029; SQL to deliberately corrupt the database file are disabled. This forbids 1030; writing directly to the schema, shadow tables (eg. FTS data tables), or 1031; the sqlite_dbpage virtual table. 1032; https://www.sqlite.org/c3ref/c_dbconfig_defensive.html 1033; (for older SQLite versions, this flag has no use) 1034;sqlite3.defensive = 1 1035 1036[Pcre] 1037; PCRE library backtracking limit. 1038; https://php.net/pcre.backtrack-limit 1039;pcre.backtrack_limit=100000 1040 1041; PCRE library recursion limit. 1042; Please note that if you set this value to a high number you may consume all 1043; the available process stack and eventually crash PHP (due to reaching the 1044; stack size limit imposed by the Operating System). 1045; https://php.net/pcre.recursion-limit 1046;pcre.recursion_limit=100000 1047 1048; Enables or disables JIT compilation of patterns. This requires the PCRE 1049; library to be compiled with JIT support. 1050;pcre.jit=1 1051 1052[Pdo] 1053; Whether to pool ODBC connections. Can be one of "strict", "relaxed" or "off" 1054; https://php.net/pdo-odbc.connection-pooling 1055;pdo_odbc.connection_pooling=strict 1056 1057[Pdo_mysql] 1058; Default socket name for local MySQL connects. If empty, uses the built-in 1059; MySQL defaults. 1060pdo_mysql.default_socket= 1061 1062[Phar] 1063; https://php.net/phar.readonly 1064;phar.readonly = On 1065 1066; https://php.net/phar.require-hash 1067;phar.require_hash = On 1068 1069;phar.cache_list = 1070 1071[mail function] 1072; For Win32 only. 1073; https://php.net/smtp 1074SMTP = localhost 1075; https://php.net/smtp-port 1076smtp_port = 25 1077 1078; For Win32 only. 1079; https://php.net/sendmail-from 1080;sendmail_from = me@example.com 1081 1082; For Unix only. You may supply arguments as well (default: "sendmail -t -i"). 1083; https://php.net/sendmail-path 1084;sendmail_path = 1085 1086; Force the addition of the specified parameters to be passed as extra parameters 1087; to the sendmail binary. These parameters will always replace the value of 1088; the 5th parameter to mail(). 1089;mail.force_extra_parameters = 1090 1091; Add X-PHP-Originating-Script: that will include uid of the script followed by the filename 1092mail.add_x_header = Off 1093 1094; The path to a log file that will log all mail() calls. Log entries include 1095; the full path of the script, line number, To address and headers. 1096;mail.log = 1097; Log mail to syslog (Event Log on Windows). 1098;mail.log = syslog 1099 1100[ODBC] 1101; https://php.net/odbc.default-db 1102;odbc.default_db = Not yet implemented 1103 1104; https://php.net/odbc.default-user 1105;odbc.default_user = Not yet implemented 1106 1107; https://php.net/odbc.default-pw 1108;odbc.default_pw = Not yet implemented 1109 1110; Controls the ODBC cursor model. 1111; Default: SQL_CURSOR_STATIC (default). 1112;odbc.default_cursortype 1113 1114; Allow or prevent persistent links. 1115; https://php.net/odbc.allow-persistent 1116odbc.allow_persistent = On 1117 1118; Check that a connection is still valid before reuse. 1119; https://php.net/odbc.check-persistent 1120odbc.check_persistent = On 1121 1122; Maximum number of persistent links. -1 means no limit. 1123; https://php.net/odbc.max-persistent 1124odbc.max_persistent = -1 1125 1126; Maximum number of links (persistent + non-persistent). -1 means no limit. 1127; https://php.net/odbc.max-links 1128odbc.max_links = -1 1129 1130; Handling of LONG fields. Returns number of bytes to variables. 0 means 1131; passthru. 1132; https://php.net/odbc.defaultlrl 1133odbc.defaultlrl = 4096 1134 1135; Handling of binary data. 0 means passthru, 1 return as is, 2 convert to char. 1136; See the documentation on odbc_binmode and odbc_longreadlen for an explanation 1137; of odbc.defaultlrl and odbc.defaultbinmode 1138; https://php.net/odbc.defaultbinmode 1139odbc.defaultbinmode = 1 1140 1141[MySQLi] 1142 1143; Maximum number of persistent links. -1 means no limit. 1144; https://php.net/mysqli.max-persistent 1145mysqli.max_persistent = -1 1146 1147; Allow accessing, from PHP's perspective, local files with LOAD DATA statements 1148; https://php.net/mysqli.allow_local_infile 1149;mysqli.allow_local_infile = On 1150 1151; It allows the user to specify a folder where files that can be sent via LOAD DATA 1152; LOCAL can exist. It is ignored if mysqli.allow_local_infile is enabled. 1153;mysqli.local_infile_directory = 1154 1155; Allow or prevent persistent links. 1156; https://php.net/mysqli.allow-persistent 1157mysqli.allow_persistent = On 1158 1159; Maximum number of links. -1 means no limit. 1160; https://php.net/mysqli.max-links 1161mysqli.max_links = -1 1162 1163; Default port number for mysqli_connect(). If unset, mysqli_connect() will use 1164; the $MYSQL_TCP_PORT or the mysql-tcp entry in /etc/services or the 1165; compile-time value defined MYSQL_PORT (in that order). Win32 will only look 1166; at MYSQL_PORT. 1167; https://php.net/mysqli.default-port 1168mysqli.default_port = 3306 1169 1170; Default socket name for local MySQL connects. If empty, uses the built-in 1171; MySQL defaults. 1172; https://php.net/mysqli.default-socket 1173mysqli.default_socket = 1174 1175; Default host for mysqli_connect() (doesn't apply in safe mode). 1176; https://php.net/mysqli.default-host 1177mysqli.default_host = 1178 1179; Default user for mysqli_connect() (doesn't apply in safe mode). 1180; https://php.net/mysqli.default-user 1181mysqli.default_user = 1182 1183; Default password for mysqli_connect() (doesn't apply in safe mode). 1184; Note that this is generally a *bad* idea to store passwords in this file. 1185; *Any* user with PHP access can run 'echo get_cfg_var("mysqli.default_pw") 1186; and reveal this password! And of course, any users with read access to this 1187; file will be able to reveal the password as well. 1188; https://php.net/mysqli.default-pw 1189mysqli.default_pw = 1190 1191; Allow or prevent reconnect 1192mysqli.reconnect = Off 1193 1194; If this option is enabled, closing a persistent connection will rollback 1195; any pending transactions of this connection, before it is put back 1196; into the persistent connection pool. 1197;mysqli.rollback_on_cached_plink = Off 1198 1199[mysqlnd] 1200; Enable / Disable collection of general statistics by mysqlnd which can be 1201; used to tune and monitor MySQL operations. 1202mysqlnd.collect_statistics = On 1203 1204; Enable / Disable collection of memory usage statistics by mysqlnd which can be 1205; used to tune and monitor MySQL operations. 1206mysqlnd.collect_memory_statistics = Off 1207 1208; Records communication from all extensions using mysqlnd to the specified log 1209; file. 1210; https://php.net/mysqlnd.debug 1211;mysqlnd.debug = 1212 1213; Defines which queries will be logged. 1214;mysqlnd.log_mask = 0 1215 1216; Default size of the mysqlnd memory pool, which is used by result sets. 1217;mysqlnd.mempool_default_size = 16000 1218 1219; Size of a pre-allocated buffer used when sending commands to MySQL in bytes. 1220;mysqlnd.net_cmd_buffer_size = 2048 1221 1222; Size of a pre-allocated buffer used for reading data sent by the server in 1223; bytes. 1224;mysqlnd.net_read_buffer_size = 32768 1225 1226; Timeout for network requests in seconds. 1227;mysqlnd.net_read_timeout = 31536000 1228 1229; SHA-256 Authentication Plugin related. File with the MySQL server public RSA 1230; key. 1231;mysqlnd.sha256_server_public_key = 1232 1233[OCI8] 1234 1235; Connection: Enables privileged connections using external 1236; credentials (OCI_SYSOPER, OCI_SYSDBA) 1237; https://php.net/oci8.privileged-connect 1238;oci8.privileged_connect = Off 1239 1240; Connection: The maximum number of persistent OCI8 connections per 1241; process. Using -1 means no limit. 1242; https://php.net/oci8.max-persistent 1243;oci8.max_persistent = -1 1244 1245; Connection: The maximum number of seconds a process is allowed to 1246; maintain an idle persistent connection. Using -1 means idle 1247; persistent connections will be maintained forever. 1248; https://php.net/oci8.persistent-timeout 1249;oci8.persistent_timeout = -1 1250 1251; Connection: The number of seconds that must pass before issuing a 1252; ping during oci_pconnect() to check the connection validity. When 1253; set to 0, each oci_pconnect() will cause a ping. Using -1 disables 1254; pings completely. 1255; https://php.net/oci8.ping-interval 1256;oci8.ping_interval = 60 1257 1258; Connection: Set this to a user chosen connection class to be used 1259; for all pooled server requests with Oracle 11g Database Resident 1260; Connection Pooling (DRCP). To use DRCP, this value should be set to 1261; the same string for all web servers running the same application, 1262; the database pool must be configured, and the connection string must 1263; specify to use a pooled server. 1264;oci8.connection_class = 1265 1266; High Availability: Using On lets PHP receive Fast Application 1267; Notification (FAN) events generated when a database node fails. The 1268; database must also be configured to post FAN events. 1269;oci8.events = Off 1270 1271; Tuning: This option enables statement caching, and specifies how 1272; many statements to cache. Using 0 disables statement caching. 1273; https://php.net/oci8.statement-cache-size 1274;oci8.statement_cache_size = 20 1275 1276; Tuning: Enables statement prefetching and sets the default number of 1277; rows that will be fetched automatically after statement execution. 1278; https://php.net/oci8.default-prefetch 1279;oci8.default_prefetch = 100 1280 1281; Compatibility. Using On means oci_close() will not close 1282; oci_connect() and oci_new_connect() connections. 1283; https://php.net/oci8.old-oci-close-semantics 1284;oci8.old_oci_close_semantics = Off 1285 1286[PostgreSQL] 1287; Allow or prevent persistent links. 1288; https://php.net/pgsql.allow-persistent 1289pgsql.allow_persistent = On 1290 1291; Detect broken persistent links always with pg_pconnect(). 1292; Auto reset feature requires a little overheads. 1293; https://php.net/pgsql.auto-reset-persistent 1294pgsql.auto_reset_persistent = Off 1295 1296; Maximum number of persistent links. -1 means no limit. 1297; https://php.net/pgsql.max-persistent 1298pgsql.max_persistent = -1 1299 1300; Maximum number of links (persistent+non persistent). -1 means no limit. 1301; https://php.net/pgsql.max-links 1302pgsql.max_links = -1 1303 1304; Ignore PostgreSQL backends Notice message or not. 1305; Notice message logging require a little overheads. 1306; https://php.net/pgsql.ignore-notice 1307pgsql.ignore_notice = 0 1308 1309; Log PostgreSQL backends Notice message or not. 1310; Unless pgsql.ignore_notice=0, module cannot log notice message. 1311; https://php.net/pgsql.log-notice 1312pgsql.log_notice = 0 1313 1314[bcmath] 1315; Number of decimal digits for all bcmath functions. 1316; https://php.net/bcmath.scale 1317bcmath.scale = 0 1318 1319[browscap] 1320; https://php.net/browscap 1321;browscap = extra/browscap.ini 1322 1323[Session] 1324; Handler used to store/retrieve data. 1325; https://php.net/session.save-handler 1326session.save_handler = files 1327 1328; Argument passed to save_handler. In the case of files, this is the path 1329; where data files are stored. Note: Windows users have to change this 1330; variable in order to use PHP's session functions. 1331; 1332; The path can be defined as: 1333; 1334; session.save_path = "N;/path" 1335; 1336; where N is an integer. Instead of storing all the session files in 1337; /path, what this will do is use subdirectories N-levels deep, and 1338; store the session data in those directories. This is useful if 1339; your OS has problems with many files in one directory, and is 1340; a more efficient layout for servers that handle many sessions. 1341; 1342; NOTE 1: PHP will not create this directory structure automatically. 1343; You can use the script in the ext/session dir for that purpose. 1344; NOTE 2: See the section on garbage collection below if you choose to 1345; use subdirectories for session storage 1346; 1347; The file storage module creates files using mode 600 by default. 1348; You can change that by using 1349; 1350; session.save_path = "N;MODE;/path" 1351; 1352; where MODE is the octal representation of the mode. Note that this 1353; does not overwrite the process's umask. 1354; https://php.net/session.save-path 1355;session.save_path = "/tmp" 1356 1357; Whether to use strict session mode. 1358; Strict session mode does not accept an uninitialized session ID, and 1359; regenerates the session ID if the browser sends an uninitialized session ID. 1360; Strict mode protects applications from session fixation via a session adoption 1361; vulnerability. It is disabled by default for maximum compatibility, but 1362; enabling it is encouraged. 1363; https://wiki.php.net/rfc/strict_sessions 1364session.use_strict_mode = 0 1365 1366; Whether to use cookies. 1367; https://php.net/session.use-cookies 1368session.use_cookies = 1 1369 1370; https://php.net/session.cookie-secure 1371;session.cookie_secure = 1372 1373; This option forces PHP to fetch and use a cookie for storing and maintaining 1374; the session id. We encourage this operation as it's very helpful in combating 1375; session hijacking when not specifying and managing your own session id. It is 1376; not the be-all and end-all of session hijacking defense, but it's a good start. 1377; https://php.net/session.use-only-cookies 1378session.use_only_cookies = 1 1379 1380; Name of the session (used as cookie name). 1381; https://php.net/session.name 1382session.name = PHPSESSID 1383 1384; Initialize session on request startup. 1385; https://php.net/session.auto-start 1386session.auto_start = 0 1387 1388; Lifetime in seconds of cookie or, if 0, until browser is restarted. 1389; https://php.net/session.cookie-lifetime 1390session.cookie_lifetime = 0 1391 1392; The path for which the cookie is valid. 1393; https://php.net/session.cookie-path 1394session.cookie_path = / 1395 1396; The domain for which the cookie is valid. 1397; https://php.net/session.cookie-domain 1398session.cookie_domain = 1399 1400; Whether or not to add the httpOnly flag to the cookie, which makes it 1401; inaccessible to browser scripting languages such as JavaScript. 1402; https://php.net/session.cookie-httponly 1403session.cookie_httponly = 1404 1405; Add SameSite attribute to cookie to help mitigate Cross-Site Request Forgery (CSRF/XSRF) 1406; Current valid values are "Strict", "Lax" or "None". When using "None", 1407; make sure to include the quotes, as `none` is interpreted like `false` in ini files. 1408; https://tools.ietf.org/html/draft-west-first-party-cookies-07 1409session.cookie_samesite = 1410 1411; Handler used to serialize data. php is the standard serializer of PHP. 1412; https://php.net/session.serialize-handler 1413session.serialize_handler = php 1414 1415; Defines the probability that the 'garbage collection' process is started on every 1416; session initialization. The probability is calculated by using gc_probability/gc_divisor, 1417; e.g. 1/100 means there is a 1% chance that the GC process starts on each request. 1418; Default Value: 1 1419; Development Value: 1 1420; Production Value: 1 1421; https://php.net/session.gc-probability 1422session.gc_probability = 1 1423 1424; Defines the probability that the 'garbage collection' process is started on every 1425; session initialization. The probability is calculated by using gc_probability/gc_divisor, 1426; e.g. 1/100 means there is a 1% chance that the GC process starts on each request. 1427; For high volume production servers, using a value of 1000 is a more efficient approach. 1428; Default Value: 100 1429; Development Value: 1000 1430; Production Value: 1000 1431; https://php.net/session.gc-divisor 1432session.gc_divisor = 1000 1433 1434; After this number of seconds, stored data will be seen as 'garbage' and 1435; cleaned up by the garbage collection process. 1436; https://php.net/session.gc-maxlifetime 1437session.gc_maxlifetime = 1440 1438 1439; NOTE: If you are using the subdirectory option for storing session files 1440; (see session.save_path above), then garbage collection does *not* 1441; happen automatically. You will need to do your own garbage 1442; collection through a shell script, cron entry, or some other method. 1443; For example, the following script is the equivalent of setting 1444; session.gc_maxlifetime to 1440 (1440 seconds = 24 minutes): 1445; find /path/to/sessions -cmin +24 -type f | xargs rm 1446 1447; Check HTTP Referer to invalidate externally stored URLs containing ids. 1448; HTTP_REFERER has to contain this substring for the session to be 1449; considered as valid. 1450; https://php.net/session.referer-check 1451session.referer_check = 1452 1453; Set to {nocache,private,public,} to determine HTTP caching aspects 1454; or leave this empty to avoid sending anti-caching headers. 1455; https://php.net/session.cache-limiter 1456session.cache_limiter = nocache 1457 1458; Document expires after n minutes. 1459; https://php.net/session.cache-expire 1460session.cache_expire = 180 1461 1462; trans sid support is disabled by default. 1463; Use of trans sid may risk your users' security. 1464; Use this option with caution. 1465; - User may send URL contains active session ID 1466; to other person via. email/irc/etc. 1467; - URL that contains active session ID may be stored 1468; in publicly accessible computer. 1469; - User may access your site with the same session ID 1470; always using URL stored in browser's history or bookmarks. 1471; https://php.net/session.use-trans-sid 1472session.use_trans_sid = 0 1473 1474; Set session ID character length. This value could be between 22 to 256. 1475; Shorter length than default is supported only for compatibility reason. 1476; Users should use 32 or more chars. 1477; https://php.net/session.sid-length 1478; Default Value: 32 1479; Development Value: 26 1480; Production Value: 26 1481session.sid_length = 26 1482 1483; The URL rewriter will look for URLs in a defined set of HTML tags. 1484; <form> is special; if you include them here, the rewriter will 1485; add a hidden <input> field with the info which is otherwise appended 1486; to URLs. <form> tag's action attribute URL will not be modified 1487; unless it is specified. 1488; Note that all valid entries require a "=", even if no value follows. 1489; Default Value: "a=href,area=href,frame=src,form=" 1490; Development Value: "a=href,area=href,frame=src,form=" 1491; Production Value: "a=href,area=href,frame=src,form=" 1492; https://php.net/url-rewriter.tags 1493session.trans_sid_tags = "a=href,area=href,frame=src,form=" 1494 1495; URL rewriter does not rewrite absolute URLs by default. 1496; To enable rewrites for absolute paths, target hosts must be specified 1497; at RUNTIME. i.e. use ini_set() 1498; <form> tags is special. PHP will check action attribute's URL regardless 1499; of session.trans_sid_tags setting. 1500; If no host is defined, HTTP_HOST will be used for allowed host. 1501; Example value: php.net,www.php.net,wiki.php.net 1502; Use "," for multiple hosts. No spaces are allowed. 1503; Default Value: "" 1504; Development Value: "" 1505; Production Value: "" 1506;session.trans_sid_hosts="" 1507 1508; Define how many bits are stored in each character when converting 1509; the binary hash data to something readable. 1510; Possible values: 1511; 4 (4 bits: 0-9, a-f) 1512; 5 (5 bits: 0-9, a-v) 1513; 6 (6 bits: 0-9, a-z, A-Z, "-", ",") 1514; Default Value: 4 1515; Development Value: 5 1516; Production Value: 5 1517; https://php.net/session.hash-bits-per-character 1518session.sid_bits_per_character = 5 1519 1520; Enable upload progress tracking in $_SESSION 1521; Default Value: On 1522; Development Value: On 1523; Production Value: On 1524; https://php.net/session.upload-progress.enabled 1525;session.upload_progress.enabled = On 1526 1527; Cleanup the progress information as soon as all POST data has been read 1528; (i.e. upload completed). 1529; Default Value: On 1530; Development Value: On 1531; Production Value: On 1532; https://php.net/session.upload-progress.cleanup 1533;session.upload_progress.cleanup = On 1534 1535; A prefix used for the upload progress key in $_SESSION 1536; Default Value: "upload_progress_" 1537; Development Value: "upload_progress_" 1538; Production Value: "upload_progress_" 1539; https://php.net/session.upload-progress.prefix 1540;session.upload_progress.prefix = "upload_progress_" 1541 1542; The index name (concatenated with the prefix) in $_SESSION 1543; containing the upload progress information 1544; Default Value: "PHP_SESSION_UPLOAD_PROGRESS" 1545; Development Value: "PHP_SESSION_UPLOAD_PROGRESS" 1546; Production Value: "PHP_SESSION_UPLOAD_PROGRESS" 1547; https://php.net/session.upload-progress.name 1548;session.upload_progress.name = "PHP_SESSION_UPLOAD_PROGRESS" 1549 1550; How frequently the upload progress should be updated. 1551; Given either in percentages (per-file), or in bytes 1552; Default Value: "1%" 1553; Development Value: "1%" 1554; Production Value: "1%" 1555; https://php.net/session.upload-progress.freq 1556;session.upload_progress.freq = "1%" 1557 1558; The minimum delay between updates, in seconds 1559; Default Value: 1 1560; Development Value: 1 1561; Production Value: 1 1562; https://php.net/session.upload-progress.min-freq 1563;session.upload_progress.min_freq = "1" 1564 1565; Only write session data when session data is changed. Enabled by default. 1566; https://php.net/session.lazy-write 1567;session.lazy_write = On 1568 1569[Assertion] 1570; Switch whether to compile assertions at all (to have no overhead at run-time) 1571; -1: Do not compile at all 1572; 0: Jump over assertion at run-time 1573; 1: Execute assertions 1574; Changing from or to a negative value is only possible in php.ini! (For turning assertions on and off at run-time, see assert.active, when zend.assertions = 1) 1575; Default Value: 1 1576; Development Value: 1 1577; Production Value: -1 1578; https://php.net/zend.assertions 1579zend.assertions = -1 1580 1581; Assert(expr); active by default. 1582; https://php.net/assert.active 1583;assert.active = On 1584 1585; Throw an AssertionError on failed assertions 1586; https://php.net/assert.exception 1587;assert.exception = On 1588 1589; Issue a PHP warning for each failed assertion. (Overridden by assert.exception if active) 1590; https://php.net/assert.warning 1591;assert.warning = On 1592 1593; Don't bail out by default. 1594; https://php.net/assert.bail 1595;assert.bail = Off 1596 1597; User-function to be called if an assertion fails. 1598; https://php.net/assert.callback 1599;assert.callback = 0 1600 1601[COM] 1602; path to a file containing GUIDs, IIDs or filenames of files with TypeLibs 1603; https://php.net/com.typelib-file 1604;com.typelib_file = 1605 1606; allow Distributed-COM calls 1607; https://php.net/com.allow-dcom 1608;com.allow_dcom = true 1609 1610; autoregister constants of a component's typelib on com_load() 1611; https://php.net/com.autoregister-typelib 1612;com.autoregister_typelib = true 1613 1614; register constants casesensitive 1615; https://php.net/com.autoregister-casesensitive 1616;com.autoregister_casesensitive = false 1617 1618; show warnings on duplicate constant registrations 1619; https://php.net/com.autoregister-verbose 1620;com.autoregister_verbose = true 1621 1622; The default character set code-page to use when passing strings to and from COM objects. 1623; Default: system ANSI code page 1624;com.code_page= 1625 1626; The version of the .NET framework to use. The value of the setting are the first three parts 1627; of the framework's version number, separated by dots, and prefixed with "v", e.g. "v4.0.30319". 1628;com.dotnet_version= 1629 1630[mbstring] 1631; language for internal character representation. 1632; This affects mb_send_mail() and mbstring.detect_order. 1633; https://php.net/mbstring.language 1634;mbstring.language = Japanese 1635 1636; Use of this INI entry is deprecated, use global internal_encoding instead. 1637; internal/script encoding. 1638; Some encoding cannot work as internal encoding. (e.g. SJIS, BIG5, ISO-2022-*) 1639; If empty, default_charset or internal_encoding or iconv.internal_encoding is used. 1640; The precedence is: default_charset < internal_encoding < iconv.internal_encoding 1641;mbstring.internal_encoding = 1642 1643; Use of this INI entry is deprecated, use global input_encoding instead. 1644; http input encoding. 1645; mbstring.encoding_translation = On is needed to use this setting. 1646; If empty, default_charset or input_encoding or mbstring.input is used. 1647; The precedence is: default_charset < input_encoding < mbstring.http_input 1648; https://php.net/mbstring.http-input 1649;mbstring.http_input = 1650 1651; Use of this INI entry is deprecated, use global output_encoding instead. 1652; http output encoding. 1653; mb_output_handler must be registered as output buffer to function. 1654; If empty, default_charset or output_encoding or mbstring.http_output is used. 1655; The precedence is: default_charset < output_encoding < mbstring.http_output 1656; To use an output encoding conversion, mbstring's output handler must be set 1657; otherwise output encoding conversion cannot be performed. 1658; https://php.net/mbstring.http-output 1659;mbstring.http_output = 1660 1661; enable automatic encoding translation according to 1662; mbstring.internal_encoding setting. Input chars are 1663; converted to internal encoding by setting this to On. 1664; Note: Do _not_ use automatic encoding translation for 1665; portable libs/applications. 1666; https://php.net/mbstring.encoding-translation 1667;mbstring.encoding_translation = Off 1668 1669; automatic encoding detection order. 1670; "auto" detect order is changed according to mbstring.language 1671; https://php.net/mbstring.detect-order 1672;mbstring.detect_order = auto 1673 1674; substitute_character used when character cannot be converted 1675; one from another 1676; https://php.net/mbstring.substitute-character 1677;mbstring.substitute_character = none 1678 1679; Enable strict encoding detection. 1680;mbstring.strict_detection = Off 1681 1682; This directive specifies the regex pattern of content types for which mb_output_handler() 1683; is activated. 1684; Default: mbstring.http_output_conv_mimetypes=^(text/|application/xhtml\+xml) 1685;mbstring.http_output_conv_mimetypes= 1686 1687; This directive specifies maximum stack depth for mbstring regular expressions. It is similar 1688; to the pcre.recursion_limit for PCRE. 1689;mbstring.regex_stack_limit=100000 1690 1691; This directive specifies maximum retry count for mbstring regular expressions. It is similar 1692; to the pcre.backtrack_limit for PCRE. 1693;mbstring.regex_retry_limit=1000000 1694 1695[gd] 1696; Tell the jpeg decode to ignore warnings and try to create 1697; a gd image. The warning will then be displayed as notices 1698; disabled by default 1699; https://php.net/gd.jpeg-ignore-warning 1700;gd.jpeg_ignore_warning = 1 1701 1702[exif] 1703; Exif UNICODE user comments are handled as UCS-2BE/UCS-2LE and JIS as JIS. 1704; With mbstring support this will automatically be converted into the encoding 1705; given by corresponding encode setting. When empty mbstring.internal_encoding 1706; is used. For the decode settings you can distinguish between motorola and 1707; intel byte order. A decode setting cannot be empty. 1708; https://php.net/exif.encode-unicode 1709;exif.encode_unicode = ISO-8859-15 1710 1711; https://php.net/exif.decode-unicode-motorola 1712;exif.decode_unicode_motorola = UCS-2BE 1713 1714; https://php.net/exif.decode-unicode-intel 1715;exif.decode_unicode_intel = UCS-2LE 1716 1717; https://php.net/exif.encode-jis 1718;exif.encode_jis = 1719 1720; https://php.net/exif.decode-jis-motorola 1721;exif.decode_jis_motorola = JIS 1722 1723; https://php.net/exif.decode-jis-intel 1724;exif.decode_jis_intel = JIS 1725 1726[Tidy] 1727; The path to a default tidy configuration file to use when using tidy 1728; https://php.net/tidy.default-config 1729;tidy.default_config = /usr/local/lib/php/default.tcfg 1730 1731; Should tidy clean and repair output automatically? 1732; WARNING: Do not use this option if you are generating non-html content 1733; such as dynamic images 1734; https://php.net/tidy.clean-output 1735tidy.clean_output = Off 1736 1737[soap] 1738; Enables or disables WSDL caching feature. 1739; https://php.net/soap.wsdl-cache-enabled 1740soap.wsdl_cache_enabled=1 1741 1742; Sets the directory name where SOAP extension will put cache files. 1743; https://php.net/soap.wsdl-cache-dir 1744soap.wsdl_cache_dir="/tmp" 1745 1746; (time to live) Sets the number of second while cached file will be used 1747; instead of original one. 1748; https://php.net/soap.wsdl-cache-ttl 1749soap.wsdl_cache_ttl=86400 1750 1751; Sets the size of the cache limit. (Max. number of WSDL files to cache) 1752soap.wsdl_cache_limit = 5 1753 1754[sysvshm] 1755; A default size of the shared memory segment 1756;sysvshm.init_mem = 10000 1757 1758[ldap] 1759; Sets the maximum number of open links or -1 for unlimited. 1760ldap.max_links = -1 1761 1762[dba] 1763;dba.default_handler= 1764 1765[opcache] 1766; Determines if Zend OPCache is enabled 1767;opcache.enable=1 1768 1769; Determines if Zend OPCache is enabled for the CLI version of PHP 1770;opcache.enable_cli=0 1771 1772; The OPcache shared memory storage size. 1773;opcache.memory_consumption=128 1774 1775; The amount of memory for interned strings in Mbytes. 1776;opcache.interned_strings_buffer=8 1777 1778; The maximum number of keys (scripts) in the OPcache hash table. 1779; Only numbers between 200 and 1000000 are allowed. 1780;opcache.max_accelerated_files=10000 1781 1782; The maximum percentage of "wasted" memory until a restart is scheduled. 1783;opcache.max_wasted_percentage=5 1784 1785; When this directive is enabled, the OPcache appends the current working 1786; directory to the script key, thus eliminating possible collisions between 1787; files with the same name (basename). Disabling the directive improves 1788; performance, but may break existing applications. 1789;opcache.use_cwd=1 1790 1791; When disabled, you must reset the OPcache manually or restart the 1792; webserver for changes to the filesystem to take effect. 1793;opcache.validate_timestamps=1 1794 1795; How often (in seconds) to check file timestamps for changes to the shared 1796; memory storage allocation. ("1" means validate once per second, but only 1797; once per request. "0" means always validate) 1798;opcache.revalidate_freq=2 1799 1800; Enables or disables file search in include_path optimization 1801;opcache.revalidate_path=0 1802 1803; If disabled, all PHPDoc comments are dropped from the code to reduce the 1804; size of the optimized code. 1805;opcache.save_comments=1 1806 1807; If enabled, compilation warnings (including notices and deprecations) will 1808; be recorded and replayed each time a file is included. Otherwise, compilation 1809; warnings will only be emitted when the file is first cached. 1810;opcache.record_warnings=0 1811 1812; Allow file existence override (file_exists, etc.) performance feature. 1813;opcache.enable_file_override=0 1814 1815; A bitmask, where each bit enables or disables the appropriate OPcache 1816; passes 1817;opcache.optimization_level=0x7FFFBFFF 1818 1819;opcache.dups_fix=0 1820 1821; The location of the OPcache blacklist file (wildcards allowed). 1822; Each OPcache blacklist file is a text file that holds the names of files 1823; that should not be accelerated. The file format is to add each filename 1824; to a new line. The filename may be a full path or just a file prefix 1825; (i.e., /var/www/x blacklists all the files and directories in /var/www 1826; that start with 'x'). Line starting with a ; are ignored (comments). 1827;opcache.blacklist_filename= 1828 1829; Allows exclusion of large files from being cached. By default all files 1830; are cached. 1831;opcache.max_file_size=0 1832 1833; Check the cache checksum each N requests. 1834; The default value of "0" means that the checks are disabled. 1835;opcache.consistency_checks=0 1836 1837; How long to wait (in seconds) for a scheduled restart to begin if the cache 1838; is not being accessed. 1839;opcache.force_restart_timeout=180 1840 1841; OPcache error_log file name. Empty string assumes "stderr". 1842;opcache.error_log= 1843 1844; All OPcache errors go to the Web server log. 1845; By default, only fatal errors (level 0) or errors (level 1) are logged. 1846; You can also enable warnings (level 2), info messages (level 3) or 1847; debug messages (level 4). 1848;opcache.log_verbosity_level=1 1849 1850; Preferred Shared Memory back-end. Leave empty and let the system decide. 1851;opcache.preferred_memory_model= 1852 1853; Protect the shared memory from unexpected writing during script execution. 1854; Useful for internal debugging only. 1855;opcache.protect_memory=0 1856 1857; Allows calling OPcache API functions only from PHP scripts which path is 1858; started from specified string. The default "" means no restriction 1859;opcache.restrict_api= 1860 1861; Mapping base of shared memory segments (for Windows only). All the PHP 1862; processes have to map shared memory into the same address space. This 1863; directive allows to manually fix the "Unable to reattach to base address" 1864; errors. 1865;opcache.mmap_base= 1866 1867; Facilitates multiple OPcache instances per user (for Windows only). All PHP 1868; processes with the same cache ID and user share an OPcache instance. 1869;opcache.cache_id= 1870 1871; Enables and sets the second level cache directory. 1872; It should improve performance when SHM memory is full, at server restart or 1873; SHM reset. The default "" disables file based caching. 1874;opcache.file_cache= 1875 1876; Enables or disables opcode caching in shared memory. 1877;opcache.file_cache_only=0 1878 1879; Enables or disables checksum validation when script loaded from file cache. 1880;opcache.file_cache_consistency_checks=1 1881 1882; Implies opcache.file_cache_only=1 for a certain process that failed to 1883; reattach to the shared memory (for Windows only). Explicitly enabled file 1884; cache is required. 1885;opcache.file_cache_fallback=1 1886 1887; Enables or disables copying of PHP code (text segment) into HUGE PAGES. 1888; This should improve performance, but requires appropriate OS configuration. 1889;opcache.huge_code_pages=1 1890 1891; Validate cached file permissions. 1892;opcache.validate_permission=0 1893 1894; Prevent name collisions in chroot'ed environment. 1895;opcache.validate_root=0 1896 1897; If specified, it produces opcode dumps for debugging different stages of 1898; optimizations. 1899;opcache.opt_debug_level=0 1900 1901; Specifies a PHP script that is going to be compiled and executed at server 1902; start-up. 1903; https://php.net/opcache.preload 1904;opcache.preload= 1905 1906; Preloading code as root is not allowed for security reasons. This directive 1907; facilitates to let the preloading to be run as another user. 1908; https://php.net/opcache.preload_user 1909;opcache.preload_user= 1910 1911; Prevents caching files that are less than this number of seconds old. It 1912; protects from caching of incompletely updated files. In case all file updates 1913; on your site are atomic, you may increase performance by setting it to "0". 1914;opcache.file_update_protection=2 1915 1916; Absolute path used to store shared lockfiles (for *nix only). 1917;opcache.lockfile_path=/tmp 1918 1919[curl] 1920; A default value for the CURLOPT_CAINFO option. This is required to be an 1921; absolute path. 1922;curl.cainfo = 1923 1924[openssl] 1925; The location of a Certificate Authority (CA) file on the local filesystem 1926; to use when verifying the identity of SSL/TLS peers. Most users should 1927; not specify a value for this directive as PHP will attempt to use the 1928; OS-managed cert stores in its absence. If specified, this value may still 1929; be overridden on a per-stream basis via the "cafile" SSL stream context 1930; option. 1931;openssl.cafile= 1932 1933; If openssl.cafile is not specified or if the CA file is not found, the 1934; directory pointed to by openssl.capath is searched for a suitable 1935; certificate. This value must be a correctly hashed certificate directory. 1936; Most users should not specify a value for this directive as PHP will 1937; attempt to use the OS-managed cert stores in its absence. If specified, 1938; this value may still be overridden on a per-stream basis via the "capath" 1939; SSL stream context option. 1940;openssl.capath= 1941 1942[ffi] 1943; FFI API restriction. Possible values: 1944; "preload" - enabled in CLI scripts and preloaded files (default) 1945; "false" - always disabled 1946; "true" - always enabled 1947;ffi.enable=preload 1948 1949; List of headers files to preload, wildcard patterns allowed. 1950;ffi.preload= 1951