Hi all,
I'm in the process of trying to upgrade from 1.3.8a to 1.3.9f - feels pretty daunting at the moment, but hopefully I'll get there in one piece!!
My PHP5 is currently running as a cgi application - I set it this way when I was setting things up, (not sure why I chose that option), but I have uploaded 1.3.9f to a ZC_New folder and when I go to do the install it warns me about this ("The session.use_trans_sid setting in your server's PHP.INI file is set to ON. This could potentially cause you some problems with session handling and possibly even security concerns.") I tried working around this by settng a .htaccess parameter, but it made no difference, so I checked with my hosting company. The support dept there said I can change it to an Apache module no problem - however they also said:
"Running PHP5 as a CGI application is generally seen as more secure as it runs as your own user on the server. This means that it uses a set of permissions that no other user has access to. The downside is that you cannot set php variables in a .htaccess file.
Running PHP5 as an Apache module does mean that you can set these php variables however you may run into permission issues when you try to edit files as any files created by the website will become owned by the apache user which you then cannot edit.
Switching from CGI to Apache is relatively simple and you should have no problems doing this, however switching from Apache to CGI is not quite as simple as some of the website files may be owned by the Apache user and you will need to contact us to change the permissions on the files."
What to do???
Also, how often do I need to upgrade? It seems like a rather unnerving undertaking, specially when I read things like "However, you will see many extra differences that may not be related to your own customizations, or that may conflict. Be careful making changes to program code." I don't want to go through this process every time a minor change comes out!
TIA,
J.
Bookmarks