You can install Suhosin to protect your servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts:
- – a small patch against the PHP core / format string vulnerabilities
- – a powerful PHP extension that implements numerous other protections.
Now you can install Suhosin under different Linux distribution such as : REHL / CentOS / Fedora.
The Suhosin extension protects servers against:
- buffer overflows
- insecure programming techniques
- other known and unknown vulnerabilities in PHP
Follow these steps to install Suhosin:
a.Download latest version of Suhosin
# cd /opt
# wget http://download.suhosin.org/suhosin-0.9.32.1.tgz
Make sure that php-devel is installed:
# yum install php-devel
b. Compile Suhosin under PHP and RHEL / CentOS Linux using the below commands
# cd suhosin-0.9.32.1
# phpize
#./configure
# make
# make install
c. Configure Suhosin on the server, using the below command. A configuration file of Suhosin would be created
# echo ‘extension=suhosin.so’ > /etc/php.d/suhosin.ini
d. Restart apache
# service httpd restart
e. You can check if Suhosin has been installed on the server using the following:
php -v
The main idea behind designing Suhosin was, to offer protection for servers against various attacks and other known issues in PHP.
To wrap up, it is your free choice to use Suhosin. If you want additional protection for your servers and your business, we can only recommend strongly that you use the extension and the patch. Always keep in mind that you are not only protecting yourself and your users, but also other people on the internet, that might get attacked by your server after it has been turned into a (Spam-/DDOS-)attack drone.
Hope you liked it. You can get in touch with us for more updates and support.