PhpRiot
News Archive
PhpRiot Newsletter
Your Email Address:

More information

Making Zend Server Available Via SSL Only

Note: This article was originally published at phly, boy, phly on 7 January 2011.

In light of the recent remote PHP exploit, I decided to update a couple servers I manage to ensure they weren't vulnerable. In each case, I had been using hand-compiled PHP builds, but decided that I'm simply too busy lately to be trying to maintain updates -- so I decided to install Zend Server. I've been using Zend Server CE on my laptop since before even any initial private betas, and have been pretty happy with it -- I only compile now when I need to test specific PHP versions.

One thing I've never been happy about, however, is that by default Zend Server exposes its administration GUI via both HTTP and HTTPS. Considering that the password gives you access to a lot of sensitive configuration, I want it to be encrypted.


Continue reading "Making Zend Server Available Via SSL Only"