about safe mode

[Mazinger]

Can we run XF with safe mode turned on?

 

[Paul B]

Please see here for a list of requirements: http://xenforo.com/community/threads/beta-release-date-and-pricing.3876/#post-63080

Safe mode must be turned off.

 

[Mazinger]

Does turning it on closes a specific function or it disables the whole product?

 

[Mike]

Primarily, it would break uploads. But it's possible/likely that it will break other things in the future.

 

[Nasr]

Will turning safe_mode off cause a security issue? I've read somewhere that this is one of the disadvantages of Xenforo!

 

[Mike]

It's worth pointing at the PHP manual itself here: http://php.net/manual/en/features.safe-mode.php:

This feature has been DEPRECATED as of PHP 5.3.0. Relying on this feature is highly discouraged.

Safe mode unreasonably limits things like creating directories and reading files from within them (based on its UID limits). Strictly speaking, there are workarounds, but they involve chown'ing files and that's not really something to get into. The cruxt is that safe_mode is not a recommended PHP setting any more; security solutions should be looked at via a lower-level method (eg, phpsuexec).