This set of PHP Multiple Choice Questions & Answers (MCQs) focuses on “Website Security using PHP”.
1. Which one of the following statements should be used to disable just the fopen(), and file() functions?
a) disable_functions = fopen(), file()
b) disable_functions = fopen, file
c) functions_disable = fopen(), file()
d) functions_disable = fopen, file
Explanation: You can set disable_functions equal to a comma-delimited list of function names that you want to disable.
2. Which one of the following statements should be used to disable the use of two classes administrator and janitor?
a) disable_classes = “administrator, janitor”
b) disable_classes = class administrator, class janitor
c) disable_classes = class “administrator”, class “janitor”
d) disable_class = class “administrator”, class “janitor”
Explanation: There may be classes inside the libraries that you’d rather not make available. You can prevent the use of these classes with the disable_classes directive.
3. What is the default value of max_execution_time directive? This directive specifies how many seconds a script can execute before being terminated.
Explanation: This can be useful to prevent users’ scripts from consuming too much CPU time. If max_execution_time is set to 0, no time limit will be set.
4. The memory_limit is only applicable if ___ is enabled when you configure PHP. Fill in the blank.
Explanation: This directive specifies, in megabytes, how much memory a script can use. Default value: 128M.
5. Suppose all web material is located within the directory /home/www. To prevent users from viewing and manipulating files such as /etc/password, which one of the following statements should you use?
a) open_dir = “/home/www/”
b) open_dir = /home/www/
c) open_basedir = /home/www/
d) open_basedir = “/home/www/”
6. Which Apache directive outputs Apache’s server version, server name, port and compile-in modules?
Explanation: It is capable of displaying output like: Apache/2.2.11 (Ubuntu) Server at localhost Port 80.
7. Which directive determines which degree of server details is provided if the ServerSignature directive is enabled?
Explanation: Six options are available: Full, Major, Minimal, Minior, OS, and Prod. If it is set to Full ‘Apache/2.2.11 (Ubuntu) PHP/5.3.2 Server’ will be displayed.
8. Which directive should we disable to obscure the fact that PHP is being used on our server?
Explanation: Using the expose_php directive we can prevent PHP version details from being appended on our web server signature. When expose_php is disabled, the server signature will look like: Apache/2.2.11 (Ubuntu) Server.
9. Say I want to change the extension of a PHP file, which of the following statements should I edit to change from .php to .html in the httpd.conf file?
a) AddType application/x-httpd-php .php
b) AddType application/x-httpd-php .asp
c) AddType application/x-httpd-asp .php
d) AddType application/x-httpd-asp .asp
Explanation: Just change the .php to .html and your extension will change. This is used for security purpose.
10. The developers of PHP deprecated the safe mode feature as of which PHP version.
a) PHP 5.1.0
b) PHP 5.2.0
c) PHP 5.3.0
d) PHP 5.3.1
Explanation: This happened because safe mode often creates many problems as it resolves, largely due to the need for enterprise applications to use many of the features safe mode disables.
Sanfoundry Global Education & Learning Series – PHP Programming.
To practice all questions on PHP Programming, here is complete set of 1000+ Multiple Choice Questions and Answers on PHP.