Search Our Database

How to Enable Global Variable Registration in DirectAdmin (Evolution Skin)

Last updated on Jan 15,2026 |

under

by sofia

Introduction

PHP register globals is a deprecated feature that automatically creates global variables from external input sources, though it poses significant security risks and is disabled by default in modern PHP versions. Legacy applications built for older PHP versions may require this setting enabled to function, though updating application code to use secure variable handling methods is strongly recommended. DirectAdmin’s PHP Settings interface provides a method for enabling register globals through custom PHP overrides when absolutely necessary for compatibility. This guide explains how to enable register globals using the Account Manager > PHP Settings section in DirectAdmin, though this configuration should only be used as a temporary measure while updating legacy code to modern security standards.

Prerequisites

Access to DirectAdmin control panel with the necessary permissions.

Step-by-step Guide

Step 1: Access DirectAdmin

Step 2: Access PHP Settings

Go to the Account Manager section and click on PHP Settings.

Step 3: Enable Global Variable Registration

Scroll down to the Add New Override section. From the Setting drop-down menu, select register_globals. From the Value drop-down menu, select On. Then, click Add on the bottom right.

Important note: Turning this on is a major security risk that allows hackers to easily overwrite internal script variables via a simple URL. If an old script requires this to be “On,” it is highly recommended to update the code rather than changing this setting.

Step 4: Verify the changes

You may confirm the new override settings in the updated PHP Settings table. External variables now become global.

Conclusion

Enabling PHP register globals through DirectAdmin’s PHP Settings interface is a simple process that restores deprecated functionality for legacy applications. However, this setting creates serious security vulnerabilities by allowing external data to overwrite script variables, and should only be enabled temporarily for compatibility with outdated code while prioritizing application updates to eliminate this dangerous dependency.

Should you have any inquiries about the guidelines, please feel free to open a ticket through your portal account or contact us at support@ipserverone.com. We’ll be happy to assist you further.