diff options
author | mattab <matthieu.aubry@gmail.com> | 2017-03-25 02:10:54 +0300 |
---|---|---|
committer | mattab <matthieu.aubry@gmail.com> | 2017-03-25 02:10:54 +0300 |
commit | 54e12185b67e18a13a443171561b857a1b05d954 (patch) | |
tree | 2bbeb3820d26e95c9f0f707882602bc260e5f758 /config | |
parent | bcab7417d6555426a3c0e5d2b0d93b1c155e8f9b (diff) |
Tweak comment
Diffstat (limited to 'config')
-rw-r--r-- | config/global.ini.php | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/config/global.ini.php b/config/global.ini.php index 1dc2dda825..d12f73c1c0 100644 --- a/config/global.ini.php +++ b/config/global.ini.php @@ -539,8 +539,9 @@ enable_load_data_infile = 1 ; - links to Uninstall themes will be disabled (but user can still enable/disable themes) enable_plugins_admin = 1 -; By setting this option to 1, it will be possible to upload plugin archives directly in Piwik -; Enabling this opens a remote code execution vulnarability, which yould be used by attackers gaining access to Piwik admin +; By setting this option to 1, it will be possible for Super Users to upload Piwik plugin ZIP archives directly in Piwik Administration. +; Enabling this opens a remote code execution vulnerability where +; an attacker who gained Super User access could execute custom PHP code in a Piwik plugin. enable_plugin_upload = 0 ; By setting this option to 0, you can prevent Super User from editing the Geolocation settings. |