Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:105607 Return-Path: Delivered-To: mailing list internals@lists.php.net Received: (qmail 20907 invoked from network); 7 May 2019 13:14:08 -0000 Received: from unknown (HELO mail-vk1-f181.google.com) (209.85.221.181) by pb1.pair.com with SMTP; 7 May 2019 13:14:08 -0000 Received: by mail-vk1-f181.google.com with SMTP id d74so3919540vka.3 for ; Tue, 07 May 2019 03:18:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=f24QmvPPMn0hZqtAoptnsMny+wNBxsL4FDVueRogeLE=; b=DBNoBXoP8hRFG9u78AuMt6nNWhIK/9fUsqoKOE/96GiJaCZEIrG/9ywFJynSMb/ZBE lXAZfpovfxyfswx5xKsbT7R4IvxDLQpa/LhXuUvTg1L8yQC4PetSsAEspGL6X00K8p7l DrWNrKCpk7cxEJDbOGLdJUGyaV9aTWkUXvdZKspa6mLHJTfPSB6BE1lICy2gYxNVdrWe /0AzmSJJiJdRXTidyuewfVJKtCXLheHMkdZ0mFcszGt4ORm1XaZTuPzjiCUYUJZj56Vp jPc20BOxOsW2tGfWBr4cvFi0vPHV/ywLbTf3A/ltAcuTtxp0rOgNahQ0pwu0OwzewSp2 IWZw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=f24QmvPPMn0hZqtAoptnsMny+wNBxsL4FDVueRogeLE=; b=ADdIX/TrIOhE1hAmZv/+lgacBPNDn9wVQzfw0QC8u6y51XV2buggrrW6wSk0wKb6jT hUP0G8PfDHMYZAlOjRU/AYYEm629epx8b2DbEW9on5ZbiBNdWnmsz5GJowAqVepbrD+L beGShSamfPU2aaEx/yyBRQI34zTCStrBnEqD6tGnmeKUoXdumQ0ZK9O9KQcVEC88m5eL aEI3Qd/YF+VfhVaZvmHjUvDpl9qiA+Z4QUJErazPNBffTAAp5pPQ3jukwL5w569xJ9DO OgHGrFBVfUOF61Ua4kANy00aCCA2JyacWThyflx+4dwtqQHUWbOhfzQizB44EXiNYQE6 XUJA== X-Gm-Message-State: APjAAAUz7F8MHajqvayjputiPRKOcD6QBW7ioiiDHFXLNMnppU+3L+as kApn7i4JRAN+zZpMrAIMWsWI7R7qCvBQpFU0DCQ= X-Google-Smtp-Source: APXvYqxyfXmusnq/hylyDmEtfwOQkmK38a2ApROHjN7fsqIWb9krVrDfglzQvgOn5mfxwe8ze6VZ0IAGqoIeVpSMhoo= X-Received: by 2002:a1f:1c82:: with SMTP id c124mr15968282vkc.35.1557224280219; Tue, 07 May 2019 03:18:00 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: Date: Tue, 7 May 2019 12:17:49 +0200 Message-ID: To: Nikita Popov Cc: PHP internals Content-Type: multipart/alternative; boundary="0000000000000ee67b058849886e" Subject: Re: [PHP-DEV] open_basedir? From: krakjoe@gmail.com (Joe Watkins) --0000000000000ee67b058849886e Content-Type: text/plain; charset="UTF-8" Morning Nikita, It would be wise to do a) and b) regardless of whether it's going to be removed. I think +1 on removing it in 8 ... I'm not sure if it should be deprecated in 7.4 first, or how that would work ? Cheers Joe On Tue, 7 May 2019 at 12:11, Nikita Popov wrote: > Hi internals, > > The open_basedir ini setting has two significant problems: > > 1. It is a major performance hit, because it disables the realpath cache. > > 2. Many people think it is a security feature and use it as such. However, > open_basedir is in reality a "best effort" mechanism, with known > workarounds and more regularly being found. Especially when it comes to > interactions with 3rd party libraries, enforcing open_basedir is simply > impossible. > > What open_basedir tries to do must be implemented on the operating system > level to work reliably (and of course such mechanisms exist, such as jails, > chroot and friends). > > I wonder if it is feasible to drop this ini setting? Enforcing this doesn't > really seem like any of PHP's business. If not, I think we need to at least > > a) make it clear in the documentation that this is *not* a security option > and only exists to prevent "accidents" and > b) update the security policy (https://wiki.php.net/security) to state > that > open_basedir bypasses are not security issues. I believe this has been part > of Debian's security policy for some time already. > > Regards, > Nikita > --0000000000000ee67b058849886e--