PHP a monster???

bengt

A webhoster here in norway would not allow exec() or passthru() an such commands becaus he ment it was a huge security risk.
He said something like this... "PHP started like a small and good program, but is now turned into a monster" This because he ment there where such large security holes... Is he right?

lth2h

I don't see how.

http://us2.php.net/manual/en/function.exec.php

Just run PHP in safe mode and limit the applications allowed. I don't see a big problem even if not running in safe mode.

The solution is to just get a better host.