Thread:Project:Support desk/escapeshellarg () disabled during installation/reply (7)

Hi, Just Posting what I found in regards to this.

My server uses zPanel control panel and part of the standard zPanel setup includes the Suhosin Patch from the Hardened PHP Project (http://www.hardened-php.net/). Suhosin is an "advanced protection system for PHP installations". In the zpanel directory (/etc/zpanel/configs/apache) and then find the file httpd-vhosts.conf. You need to edit this file and look for the section for the # DOMAIN entry for your wiki site (e.g. # DOMAIN wiki.mysite.com). Within this file look for the entry that starts: php_admin_value suhosin.executor.func.blacklist This is followed by a long string of function names, separated by commas, that are to be blocked by Suhosin for this domain. In my case the entry was:

php_admin_value suhosin.executor.func.blacklist "passthru, show_source, shell_exec, system, pcntl_exec, popen, pclose, proc_open, proc_nice, proc_terminate, proc_get_sta$,$et_status, proc_close, leak, apache_child_terminate, posix_kill, posix_mkfifo, posix_setpgid, posix_setsid, posix_setuid, escapeshellcmd, escapeshellarg, exec"

You need to delete the last two entries: escapeshellarg, exec

from this string. Save the edited file, restart apache2, and the wiki install functions now work perfectly.

Alternatively you can disable suhosin for that vhost all together (this lowers the security overall for your server and I would not recommend it) via Module Admin -> Apache Config. At the bottom of that page select the vhost to override (e.g. wiki.mysite.com). then untick the Suhosin Enabled checkbox.