Hi I could use some help =)
I am using win 2k server, IIS, PHP 4.2.1 Windows Installer...
I downloaded the windows installer of php 4.2.1 at www.php.net Install seemed to go well, but now I am getting this error when calling an installed php page:
"Security Alert! The PHP CGI cannot be accessed directly.
This PHP CGI binary was compiled with force-cgi-redirect enabled. This means that a page will only be served up if the REDIRECT_STATUS CGI variable is set, e.g. via an Apache Action directive.
For more information as to why this behaviour exists, see the manual page for CGI security.
For more information about changing this behaviour or re-enabling this webserver, consult the installation file that came with this distribution, or visit the manual page."
I looked at the install help file in c:\php directory and this is what it said:
"Due to a security issue with PHP on various win32 webservers, we have
enabled functionality to disable calls to the php binary directly. This
has meant we have 2 new php ini lines:
cgi.force_redirect 0|1
cgi.redirect_status_env ENV_VAR_NAME
if cgi.force_redirect is turned on, and you are not running under Apache or Netscape
(iPlanet) web servers, you MAY need to set an environment variable name that PHP
will look for to know it is OK to continue execution. Setting this variable MAY
cause security issues, KNOW WHAT YOU ARE DOING FIRST.
if you are unsure, set cgi.force_redirect to 1, and see if your scripts execute. "
I then changed the code to:
cgi.force_redirect 1
as it said to do... Rebooted the server and I still am getting the same error stated at the top.
Any ideas what I still need to do?
Thx in advance-
Matt
