[Mapbender-users] take care - suhosin can effect Mapbender administration and block requests

Astrid Emde astrid.emde at wheregroup.com
Tue Dec 6 05:39:20 EST 2011 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,

some of you may have problems saving changes within the Mapbender
administration. This is not a Mapbender problem. It can be caused by
Suhosin, as Suhosin defines limits for example for number of POST
variables, maximum length of arrays or maximum length of values.

What is Suhosin?
Suhosin is an open source patch for PHP. "The goal behind Suhosin is to
be a safety net that protects servers from insecure PHP coding
practices." In some Linux distributions (notably Debian and Ubuntu) it
is shipped by default.
http://en.wikipedia.org/wiki/Suhosin

What can you do?
You can deactivate Suhosin to run the simulation mode:
 suhosin.simulation = on

In simulation mode violations are logged as usual, but nothing is blocked.
http://www.hardened-php.net/suhosin/configuration.html#suhosin.simulation

The log-messages will tell you which violations take place and you can
increase the parameters.

It may be necessary to increase the following parameters:
suhosin.request.max_value_length
suhosin.get.max_array_depth
suhosin.get.max_array_index_length
suhosin.get.max_name_length
suhosin.get.max_totalname_length
suhosin.get.max_value_length
suhosin.get.max_vars

Find out more about the parameter at:
http://www.hardened-php.net/suhosin/configuration.html

After changes you have to restart your apache
- --

Best regards

Astrid Emde

- ----------------------------------
Aufwind durch Wissen!

Qualifizierte OpenSource-Schulungen
bei der www.foss-academy.eu

- ----------------------------------

 Astrid Emde
 WhereGroup GmbH & Co.KG
 Eifelstraße 7
 53119 Bonn
 Germany

 Fon: +49(0)228 90 90 38 - 19
 Fax: +49(0)228 90 90 38 - 11

 astrid.emde at wheregroup.com
 www.wheregroup.com

Amtsgericht Bonn, HRA 6788
- -------------------------------
Komplementärin:
WhereGroup Verwaltungs GmbH
vertreten durch:
Olaf Knopp, Peter Stamm
- -------------------------------
 pgp-public key:
 http://pgp.mit.edu:11371/pks/lookup?search=0x06DA52D72D515284
  Signierte und/oder verschlüsselte Nachrichten sind sehr willkommen
  Signed and/or encrypted mail is highly appreciated
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAk7d8NcACgkQBtpS1y1RUoTnBQCgrHdfhlYdBobeWyIWsQo3ct9B
Pa0AoKHiwfod3lofp8ch9pzJPqJG53aK
=lHNc
-----END PGP SIGNATURE-----

More information about the Mapbender_users mailing list