[xdebug-general] security regarding remote_connect_back

From: Kristian Iversen <kristian_online[@]justiversen.dk>
Date: Fri, 29 Jun 2012 20:31:16 +0200


I am using Xdebug v2.1.3 on:
  PHP Version 5.3.3-7+squeeze7
  Linux 2.6.32-5-686, Debian

We are several people who are using the debugger, and have therefore
xdebug.remote_connect_back enabled.
I think however that this makes a security risk since everybody can
connect to the debugger and retrieve (maybe) useful information.

Is there a way to restrict access to whom can connect to Xdebug without
restricting it to specific IP addresses?

Best regards
Kristian Iversen
Received on Fri Jun 29 2012 - 19:38:50 BST

This archive was generated by hypermail 2.2.0 : Mon Jun 25 2018 - 06:00:04 BST