Reply to thread

The recommendation to disable those functions is to limit any damage done by malicious scripts that have already been uploaded to your system. In other words, if your system is already compromised in some lesser way, disabling those functions may help prevent your system from being compromised in a bigger way.


In short, those functions are perfectly safe so long as you take the rest of your server security seriously; enforce Two-Factor Authentication for all staff accounts, keep your FTP account secure by using a complex password, and don't install add-ons from authors you don't trust.



Fillip


Back
Top Bottom