| CARVIEW |
Select Language
HTTP/2 302
server: nginx
date: Fri, 22 Aug 2025 06:24:11 GMT
content-type: text/plain; charset=utf-8
content-length: 0
x-archive-redirect-reason: found capture at 20100720060526
location: https://web.archive.org/web/20100720060526/https://github.com/funkatron/phpsecinfo
server-timing: captures_list;dur=1.082024, exclusion.robots;dur=0.035270, exclusion.robots.policy;dur=0.015906, esindex;dur=0.016678, cdx.remote;dur=48.722212, LoadShardBlock;dur=225.944901, PetaboxLoader3.datanode;dur=87.945772, PetaboxLoader3.resolve;dur=66.992402
x-app-server: wwwb-app204
x-ts: 302
x-tr: 366
server-timing: TR;dur=0,Tw;dur=0,Tc;dur=0
set-cookie: wb-p-SERVER=wwwb-app204; path=/
x-location: All
x-rl: 0
x-na: 0
x-page-cache: MISS
server-timing: MISS
x-nid: DigitalOcean
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
HTTP/2 200
server: nginx
date: Fri, 22 Aug 2025 06:24:12 GMT
content-type: text/html; charset=utf-8
x-archive-orig-server: nginx/0.7.61
x-archive-orig-date: Tue, 20 Jul 2010 06:05:26 GMT
x-archive-orig-connection: close
x-archive-orig-status: 200 OK
x-archive-orig-etag: "1ef3a243261c09717bffedbb9ce676f0"
x-archive-orig-x-runtime: 76ms
x-archive-orig-content-length: 25209
x-archive-orig-cache-control: private, max-age=0, must-revalidate
x-archive-guessed-content-type: text/html
x-archive-guessed-charset: utf-8
memento-datetime: Tue, 20 Jul 2010 06:05:26 GMT
link: ; rel="original", ; rel="timemap"; type="application/link-format", ; rel="timegate", ; rel="first memento"; datetime="Tue, 20 Jul 2010 06:05:26 GMT", ; rel="memento"; datetime="Tue, 20 Jul 2010 06:05:26 GMT", ; rel="next memento"; datetime="Mon, 11 Jun 2018 01:03:15 GMT", ; rel="last memento"; datetime="Sat, 09 Dec 2023 06:45:51 GMT"
content-security-policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' data: blob: archive.org web.archive.org web-static.archive.org wayback-api.archive.org athena.archive.org analytics.archive.org pragma.archivelab.org wwwb-events.archive.org
x-archive-src: 51_16_20100720012839_crawl102-c/51_16_20100720060518_crawl101.arc.gz
server-timing: captures_list;dur=0.523325, exclusion.robots;dur=0.020278, exclusion.robots.policy;dur=0.009482, esindex;dur=0.010917, cdx.remote;dur=5.928929, LoadShardBlock;dur=119.994963, PetaboxLoader3.datanode;dur=191.853823, load_resource;dur=141.464023, PetaboxLoader3.resolve;dur=47.102639
x-app-server: wwwb-app204
x-ts: 200
x-tr: 337
server-timing: TR;dur=0,Tw;dur=0,Tc;dur=0
x-location: All
x-rl: 0
x-na: 0
x-page-cache: MISS
server-timing: MISS
x-nid: DigitalOcean
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
content-encoding: gzip
funkatron's phpsecinfo at master - GitHub
funkatron / phpsecinfo
- Source
- Commits
- Network (1)
- Issues (0)
- Downloads (0)
- Wiki (2)
- Graphs
-
Branch:
master
click here to add a description
click here to add a homepage
Sending Request…
PhpSecInfo provides an equivalent to the phpinfo() function that reports security information about the PHP environment, and offers suggestions for improvement. — Read more
README
## PHPSECINFO *Now on GitHub* _see LICENSE for copyright and license info_ Mailing List for bug reports, feedback, etc: https://lists.phpsec.org/mailman/listinfo/phpsecinfo ### WHAT IS PHPSECINFO? PHPSecInfo is a PHP environment security auditing tool modeled after the phpsecinfo() function. From a single function call, PHPSecInfo runs a series of tests on your PHP environment to identify potential security issues and offer suggestions. It can be useful as part of a multilayered security approach. #### WHAT IS PHPSECINFO NOT? * It is not a replacement for secure coding practices * It does not audit PHP code * It is not comprehensive test for either your hosting environment or your web application * It is not the "final word." PHPSecInfo identifies *potential* problems and offers suggestions for improvement. Your environment may _require_ certain settings that trigger cautions or warnings. ### HOW DO I USE PHPSECINFO? The simplest way: * Uncompress and upload the contents of the archive to your web server's document root * Open a browser and view the index.php file where you've uploaded the files (probably something like https://www.yourdomain.com/phpsecinfo/index.php) ### WHAT DO I DO IF I GET A NOTICE OR WARNING? Read the explanation of the result carefully. Research the issue on-line -- resources like the php.net official docs and the PHP Security Guide are very useful. Investigate why your environment is set up in such a way. If there's not a compelling reason to keep it as-is, you should probably A by no means comprehensive list of resources to get your started: Web Sites: https://www.php.net/manual/en/security.php https://phpsec.org/projects/guide/ Books: https://phparch.com/pgps https://phpsecurity.org/ https://apachesecurity.net/ ### HOW CAN I CUSTOMIZE THE OUTPUT OF PHPSECINFO? PHPSecInfo is intended to be used as a self-contained tool. However, you can obtain the test results in an array and then present this data in your preferred format. Example: <code> require_once('PhpSecInfo/PhpSecInfo.php'); // instantiate the class $psi = new PhpSecInfo(); // load and run all tests $psi->loadAndRun(); // grab the results as a multidimensional array $results = $psi->getResultsAsArray(); echo "<pre>"; echo print_r($results, true); echo "</pre>"; // grab the standard results output as a string $html = $psi->getOutput(); // send it to the browser echo $html; </code> ### HOW CAN I OFFER FEEDBACK, REPORT BUGS, COMPLAIN, ETC.? The best way is to subscribe to and post on the PHPSecInfo Mailing List: https://lists.phpsec.org/mailman/listinfo/phpsecinfo