disable RFI in php.ini

betonboor

Hi,

I've read somewhere that it's possible to disable RFI (Remote File Inclusion) in php.ini. Is this true? If so, can someone tell me what setting I should adjust in php.ini to disable RFI.

Disabling this, does mean that includes like

include("../include/somefile.php");

still work right?

Thanks,
betonboor

wilku

It's in Fopen wrapers section and it's called allow_url_include (set it to off). Relative paths should work.