[PhpSecInfo] element index

All elements
a c d e f g i l m n o p r s t u _
_
top
$_language
the language code. Should be a pointer to the setting in the PhpSecInfo object
$_message
The message corresponding to the result of the test
$_messages
This is a hash of messages that correspond to various test result levels.
$_result
The result returned from the test
_execTest
Check to see if the post_max_size setting is enabled.
_execTest
Checks to see if allow_url_fopen is enabled
_execTest
Checks to see if expose_php is enabled
_execTest
Checks to see if cgi.force_redirect is enabled
_execTest
Check to see if the memory_limit setting is enabled.
_execTest
Checks to see if allow_url_fopen is enabled
_execTest
Checks the GID of the PHP process to make sure it is above PHPSECINFO_MIN_SAFE_GID
_execTest
Checks to see if allow_url_fopen is enabled
_execTest
Check if session.save_path matches PHPSECINFO_TEST_COMMON_TMPDIR, or is word-writable
_execTest
Checks to see if libcurl's "file://" support is enabled by examining the "protocols" array
_execTest
Checks the GID of the PHP process to make sure it is above PHPSECINFO_MIN_SAFE_UID
_execTest
Check to see if the post_max_size setting is enabled.
_execTest
Checks to see if allow_url_fopen is enabled
_execTest
Checks to see if display_errors is enabled
_execTest
The "meat" of the test. This is where the real test code goes. You should override this when extending
_execTest
Check if upload_tmp_dir matches PHPSECINFO_TEST_COMMON_TMPDIR, or is word-writable
_execTest
Checks to see if allow_url_fopen is enabled
_execTest
Checks to see if expose_php is enabled
_execTest
Checks to see if allow_url_fopen is enabled
_outputGetCssClassFromResult
This is a helper function that returns a CSS class corresponding to the result code the test returned. This allows us to color-code results
_outputGetResultTypeFromCode
This is a helper function that returns a label string corresponding to the result code the test returned. This is mainly used for the Test Results Summary table.
_outputRenderNotRunTable
This outputs a table containing a summary or test that were not executed, and the reasons why they were skipped
_outputRenderStatsTable
This outputs a table containing a summary of the test results (counts and % in each result type)
_outputRenderTable
This is a helper method that makes it easy to output tables of test results for a given test group
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
Placeholder - extend for tests
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_retrieveCurrentValue
_setMessage
Sets the $this->_message variable based on the passed result and language codes
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages for Curl tests
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
This function loads up result messages into the $this->_messages array.
_setMessages
Set the messages specific to this test
_setMessages
Set the messages specific to this test
_setMessages
Set the messages for CGI tests
_setResult
Sets the result code
a
top
allow_url_fopen.php
allow_url_fopen.php in allow_url_fopen.php
allow_url_include.php
allow_url_include.php in allow_url_include.php
c
top
$current_value
Enter description here...
d
top
display_errors.php
display_errors.php in display_errors.php
e
top
expose_php.php
expose_php.php in expose_php.php
f
top
force_redirect.php
force_redirect.php in force_redirect.php
file_uploads.php
file_uploads.php in file_uploads.php
file_support.php
file_support.php in file_support.php
g
top
getBooleanIniValue
This method converts the several possible return values from allegedly "boolean" ini settings to proper booleans
getCurrentTestValue
returns the current value. This function should be used to access the value for display. All values are cast as strings
getMessage
Retrieves the message for the current result
getMoreInfoURL
Returns a link to a page with detailed information about the test
getOutput
PhpSecInfo::getOutput() in PhpSecInfo.php
returns the standard output as a string instead of echoing it to the browser
getRecommendedTestValue
returns the recommended value. This function should be used to access the value for display. All values are cast as strings
getResult
Retrieves the result
getResultsAsArray
returns an associative array of test data. Four keys are set:
getStringValue
This just does the usual PHP string casting, except for the boolean FALSE value, where the string "0" is returned instead of an empty string
getTestGroup
Returns the test group this test belongs to
getTestName
This retrieves the name of this test.
getUnixId
Returns an array of data returned from the UNIX 'id' command
gid.php
gid.php in gid.php
i
top
index.php
index.php in index.php
isTestable
"Curl" tests should only be run if the curl extension is installed. We can check for this by seeing if the function curl_init() is defined
isTestable
"Core" tests should pretty much be always testable, so the default is just to return true
isTestable
"Session" tests should pretty much be always testable, so the default is just to return true
isTestable
This test only works under Unix OSes
isTestable
We are disabling this function on Windows OSes right now until we can be certain of the proper way to check world-readability
isTestable
"CGI" tests should only be run if we're running as a CGI. The best way I could think of to test this was to preg against the php_sapi_name() return value.
isTestable
Determines whether or not it's appropriate to run this test (for example, if this test is for a particular library, it shouldn't be run if the lib isn't loaded).
isTestable
This test only works under Unix OSes
isTestable
magic_quotes_gpc has been removed since PHP 6.0
isTestable
register_globals has been removed since PHP 6.0
isTestable
We are disabling this function on Windows OSes right now until we can be certain of the proper way to check world-readability
isTestable
allow_url_include is only available since PHP 5.2
l
top
$language
PhpSecInfo::$language in PhpSecInfo.php
The language code used. Defaults to PHPSECINFO_LANG_DEFAULT, which is 'en'
loadAndRun
PhpSecInfo::loadAndRun() in PhpSecInfo.php
Loads and runs all the tests
loadTests
PhpSecInfo::loadTests() in PhpSecInfo.php
recurses through the Test subdir and includes classes in each test group subdir,
m
top
magic_quotes_gpc.php
magic_quotes_gpc.php in magic_quotes_gpc.php
memory_limit.php
memory_limit.php in memory_limit.php
n
top
$num_tests_run
PhpSecInfo::$num_tests_run in PhpSecInfo.php
The number of tests that have been run
o
top
osIsWindows
A quick function to determine whether we're running on Windows.
open_basedir.php
open_basedir.php in open_basedir.php
p
top
PhpSecInfo
PhpSecInfo in PhpSecInfo.php
This is the main class for the phpsecinfo system. It's responsible for dynamically loading tests, running those tests, and generating the results output
PhpSecInfo
PhpSecInfo::PhpSecInfo() in PhpSecInfo.php
Constructor
phpsecinfo
phpsecinfo() in PhpSecInfo.php
A globally-available function that runs the tests and creates the result page
PHPSECINFO_BUILD
PHPSECINFO_BUILD in PhpSecInfo.php
a YYYYMMDD date string to indicate "build" date
PHPSECINFO_LANG_DEFAULT
PHPSECINFO_LANG_DEFAULT in PhpSecInfo.php
The default language setting if none is set/retrievable
PHPSECINFO_MEMORY_LIMIT
PHPSECINFO_MEMORY_LIMIT in memory_limit.php
The max recommended size for the memory_limit setting, in bytes
PHPSECINFO_MIN_SAFE_GID
the minimum "safe" UID that php should be executing as. This can vary, but in general 100 seems like a good min.
PHPSECINFO_MIN_SAFE_UID
the minimum "safe" UID that php should be executing as. This can vary, but in general 100 seems like a good min.
PhpSecInfo.php
PhpSecInfo.php in PhpSecInfo.php
PHPSECINFO_POST_MAXLIMIT
PHPSECINFO_POST_MAXLIMIT in post_max_size.php
The max recommended size for the post_max_size setting, in bytes
PhpSecInfo_Test
PhpSecInfo_Test in Test.php
This is a skeleton class for PhpSecInfo tests You should extend this to make a "group" skeleton to categorize tests under, then make a subdir with your group name that contains test classes extending your group skeleton class.
PhpSecInfo_Test
Constructor for Test skeleton class
PhpSecInfo_Test_Cgi
PhpSecInfo_Test_Cgi in Test_Cgi.php
This is a skeleton class for PhpSecInfo "CGI" tests
PhpSecInfo_Test_Cgi_Force_Redirect
Test class for cgi force_redirect
PHPSECINFO_TEST_COMMON_TMPDIR
PhpSecInfo_Test_Core
PhpSecInfo_Test_Core in Test_Core.php
This is a skeleton class for PhpSecInfo "Core" tests
PhpSecInfo_Test_Core_Allow_Url_Fopen
Test Class for allow_url_fopen
PhpSecInfo_Test_Core_Allow_Url_Include
Test Class for allow_url_include
PhpSecInfo_Test_Core_Display_Errors
Test class for display_errors
PhpSecInfo_Test_Core_Expose_Php
Test class for expose_php
PhpSecInfo_Test_Core_File_Uploads
Test Class for file_uploads
PhpSecInfo_Test_Core_Gid
Test class for GID
PhpSecInfo_Test_Core_Magic_Quotes_GPC
Test Class for magic_quotes_gpc
PhpSecInfo_Test_Core_Memory_Limit
Test Class for memory_limit setting
PhpSecInfo_Test_Core_Open_Basedir
Test Class for open_basedir
PhpSecInfo_Test_Core_Post_Max_Size
Test Class for post_max_size
post_max_size.php
post_max_size.php in post_max_size.php
PhpSecInfo_Test_Core_Register_Globals
Test Class for register_globals
PhpSecInfo_Test_Core_Uid
Test class for UID
PhpSecInfo_Test_Core_Upload_Max_Filesize
PhpSecInfo_Test_Core_Upload_Max_Filesize in upload_max_filesize.php
Test Class for upload_max_filesize
PhpSecInfo_Test_Core_Upload_Tmp_Dir
Test Class for upload_tmp_dir
PhpSecInfo_Test_Curl
PhpSecInfo_Test_Curl in Test_Curl.php
This is a skeleton class for PhpSecInfo "Curl" tests
PhpSecInfo_Test_Curl_File_Support
Test class for CURL file_support
PHPSECINFO_TEST_MOREINFO_BASEURL
PHPSECINFO_TEST_RESULT_ERROR
PHPSECINFO_TEST_RESULT_NOTICE
PHPSECINFO_TEST_RESULT_NOTRUN
PHPSECINFO_TEST_RESULT_OK
PHPSECINFO_TEST_RESULT_WARN
PhpSecInfo_Test_Session
PhpSecInfo_Test_Session in Test_Session.php
This is a skeleton class for PhpSecInfo "Session" tests
PhpSecInfo_Test_Session_Save_Path
Test class for session save_path
PhpSecInfo_Test_Session_Use_Trans_Sid
Test class for session use_trans_sid
PHPSECINFO_UPLOAD_MAXLIMIT
PHPSECINFO_UPLOAD_MAXLIMIT in upload_max_filesize.php
The max recommended size for the upload_max_filesize setting, in bytes
PHPSECINFO_URL
PHPSECINFO_URL in PhpSecInfo.php
Homepage for phpsecinfo project
PHPSECINFO_VERSION
PHPSECINFO_VERSION in PhpSecInfo.php
a general version string to differentiate releases
r
top
$recommended_value
The recommended setting value
$recommended_value
$recommended_value
$recommended_value
$recommended_value
$recommended_value
$recommended_value
$recommended_value
$recommended_value
This is the recommended value the test will be looking for
$recommended_value
$recommended_value
$recommended_value
$recommended_value
The recommended setting value
$recommended_value
$recommended_value
$recommended_value
$recommended_value
$recommended_value
$recommended_value
$result_counts
PhpSecInfo::$result_counts in PhpSecInfo.php
An array of integers recording the number of test results in each category. Categories can include some or all of the PHPSECINFO_TEST_* constants. Constants are the keys, # of results are the values.
register_globals.php
register_globals.php in register_globals.php
renderOutput
PhpSecInfo::renderOutput() in PhpSecInfo.php
This is the main output method. The look and feel mimics phpinfo()
returnBytes
This function takes the shorthand notation used in memory limit settings for PHP and returns the byte value. Totally stolen from http://us3.php.net/manual/en/function.ini-get.php
runTests
PhpSecInfo::runTests() in PhpSecInfo.php
This runs the tests in the tests_to_run array and
s
top
save_path.php
save_path.php in save_path.php
setMessageForResult
Sets the message for a given result code and language
setTestGroup
sets the test group
setTestName
sets the test name
sys_get_temp_dir
sys_get_temp_dir provides some temp dir detection capability that is lacking in versions of PHP that do not have the sys_get_temp_dir() function
t
top
$tests_not_run
PhpSecInfo::$tests_not_run in PhpSecInfo.php
An array of tests that were not run
$tests_to_run
PhpSecInfo::$tests_to_run in PhpSecInfo.php
An array of tests to run
$test_group
This value is used to group test results together.
$test_group
This value is used to group test results together.
$test_group
This value is used to group test results together.
$test_group
This value is used to group test results together.
$test_group
This value is used to group test results together.
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_name
This should be a unique, human-readable identifier for this test
$test_results
PhpSecInfo::$test_results in PhpSecInfo.php
An array of results. Each result is an associative array:
Test_Cgi.php
Test_Cgi.php in Test_Cgi.php
Test_Core.php
Test_Core.php in Test_Core.php
Test_Curl.php
Test_Curl.php in Test_Curl.php
Test.php
Test.php in Test.php
Test_Session.php
Test_Session.php in Test_Session.php
test
This is the wrapper that executes the test and sets the result code and message
u
top
uid.php
uid.php in uid.php
upload_max_filesize.php
upload_max_filesize.php in upload_max_filesize.php
upload_tmp_dir.php
upload_tmp_dir.php in upload_tmp_dir.php
use_trans_sid.php
use_trans_sid.php in use_trans_sid.php
a c d e f g i l m n o p r s t u _