Niki Kovacs wrote: > Hi, > > I'm running a few PHP-based apps on our server (PMB, SPIP, Joomla, > PHPMyAdmin), and I'm not always comforted about security. I don't know > the details, but many a security expert frowns when it comes to PHP. > > Now I just stumbled over this: > > http://www.hardened-php.net/suhosin.127.html > > Has anyone already tried this out? An opinion about it? Is it worth it? I use it. I think it is worth it - but don't use it as a substitute for proper coding.