In Plesk Onyx 17.8 for Linux, it became possible to edit the PHP parameter
disable_functions in Plesk interface (in Domains > example.com > PHP Settings > Performance and security settings.
How to forbid customers to set this parameter?
There are 2 options available:
Revoke the permission in the service plan.
Log into Plesk, go to Service Plans > plan_name > Permissions > Show more available permissions, uncheck the permission Hosting performance settings management and click Update & Sync.
Warning: customers will also not be able to edit other PHP settings in the section Performance and security settings, PHP-FPM pool settings, and also maximum bandwidth and number of connections.
Setting the parameters in the section
[php]of the file
Connect to the server using SSH.
Open panel.ini in the text editor:
# plesk conf panel.ini
Add the following content there:
The above example forbids to execute shell commands in PHP scripts. Any required value can be set for the parameter
Log into Plesk, go to Service Plans > plan_name > PHP Settings, check the parameter of the value is correct and is not editable and click Update & Sync. Perform this action for each service plan.