I've been hard at work on the Suhosin detection and a Suhosin Information display which will give the user data on what setting is recommended, what settings are being used, and what the default data is.
Data for recommendations is utilized as referenced from
PHPMyAdmin's doc's (I had to reference a big project).
A bug was also discovered with my initial check and will be updated in the next version (I used equal to or less than, rather than less than, in my test code and didn't get it updated).
If your webhost is running the recommended settings and you're still seeing the warning, you can fix this by editing admin/login.php
Find:
// suhosin Check by VNC Web Services (http://www.virtualnightclub.net/)
if(extension_loaded("suhosin") && ini_get("suhosin.get.max_value_length")) {
if(ini_get("suhosin.get.max_value_length") <= 2048) {
$suhosin = "You may experience issues with a blank configuration file if you continue, please see <a href=\"http://www.ubbwiki.com/article/view/16/issues-with-suhosin.html\" target=\"_blank\">UBBWiki: Issues with suhosin</a>; this issue pertains to the settings of the suhosin module with your webhost. Your current suhousin length is: ". ini_get("suhosin.get.max_value_length") .".";
} else {
$suhosin = "";
}
}
// suhosin Check by VNC Web Services (http://www.virtualnightclub.net/)
if(extension_loaded("suhosin") && ini_get("suhosin.get.max_value_length")) {
if(ini_get("suhosin.get.max_value_length") < 2048) {
$suhosintxt = "You may experience issues with a blank configuration file if you continue. Please see \"<a href=\"http://www.ubbwiki.com/article/view/16/issues-with-suhosin.html\" target=\"_blank\">UBBWiki: Issues With Suhosin</a>\". This issue pertains to the settings of the suhosin module with your webhost.";
$suhosinsize = ini_get("suhosin.get.max_value_length") ;
} else {
$suhosintxt = "";
$suhosinsize = "";
}
}
The new check that I'm working on will check the following settings:
suhosin.get.max_value_length < 1024
suhosin.request.max_vars < 2048
suhosin.post.max_vars < 2048
Versus:
suhosin.get.max_value_length < 2048
For users with Suhosin installed, if you'd be interested in testing the new Suhosin check/info center PLEASE send me a PT or an email james[at]virtualnightclub[dot]net and I'll give you the latest set of coding (you must be running 7.5.8+ in order to use the new code).
