Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:105613
Return-Path: <rowan.collins@gmail.com>
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 45195 invoked from network); 7 May 2019 14:24:59 -0000
Received: from unknown (HELO mail-it1-f174.google.com) (209.85.166.174)
  by pb1.pair.com with SMTP; 7 May 2019 14:24:59 -0000
Received: by mail-it1-f174.google.com with SMTP id q14so25797682itk.0
        for <internals@lists.php.net>; Tue, 07 May 2019 04:28:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to;
        bh=VsLAzO5I70Fazvdfo95E2jvzHNyhjv8tffVnhhYxbko=;
        b=sHBbT595IyG/zVUcWHwm7cn3oviVLTcC49JzUXXJAQKKZuLWaNi1tMCqTDg3OJsoG5
         ZUsvYE008wefvTCAJfWT13ME2o6Tqfwq86fmVM84n8+KUB3WDFJSZs2k6qnnDYgKD9OA
         S3I//sHCPGd8eT5dV0IU4+u4/feR3QqZlSP6ItnCan5IeQmoe1UbvtIOpN3xfGRbiSyP
         t1/8HGZez4UnAZ0MewWJnu9VtM2gnsDpwUIlmgf7FabL91gjG//0EWBcezd6eg/lMPiq
         wDixGM9fb/fmxabAg9BrGXV24JTw38AA+1zdEBvaqkPU5+DZkpff2XWTZAZ0zFhH9wvu
         iKEw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to;
        bh=VsLAzO5I70Fazvdfo95E2jvzHNyhjv8tffVnhhYxbko=;
        b=Ei2g58wSriDsxFT1+tOw6umEobYuh0kw8xqT/xX4SRiXgFNEDH2sLh4memm3NoeNAl
         Ssf5qaCEUdYPvTzL8tkLLVEvqBHB79ZSQmMrsvnAmYoZThon3YEfeHMj2DuVN67Eh0Na
         TOjRygkXp0FYR60d5GPVKbktaD0DL0vCF2iW8rcScIdAeWzIyyjr/x8ePa/Avr1S0sCE
         DZwBUFz6gvKfDCueqFgc809KRKSNiN8zPLMb9S0x3LnWe9CDfHbSgICdwEU858fLL+/i
         huLgDGVtmxtBurNmlvV1dYNQz5PO+qIoLpE3mv6MlnYTZnYmCVFhfC22m0W8wbTYjoQz
         H8yw==
X-Gm-Message-State: APjAAAVAvEiq5s4cMKE6R/pDNmZtcP48y7/L9Nm+pSfbaRWN3YPyD+LL
	kk2oeEjSC7qJkTDO6lLLoaz5RCu7646p0jtmPIG98Q==
X-Google-Smtp-Source: APXvYqxND9kFU57UjM2YbFeLhwxU74yzhZT6fXsGXhP1q6zUGzVF4eMTkdy1n5toCGQem/ZhirmLNSlyk8L+A7+/sLo=
X-Received: by 2002:a24:6793:: with SMTP id u141mr14175303itc.139.1557228532069;
 Tue, 07 May 2019 04:28:52 -0700 (PDT)
MIME-Version: 1.0
References: <CAF+90c-4-R4SYY_AAL679ZYBn2QAZTYAGXH6E6Bz1hYGN=MFcA@mail.gmail.com>
 <CAOwTYAv_kmgqoLvqqsp04ajh0RyPTxqGg3z_zBTx6hX_ydTxrw@mail.gmail.com>
 <CAOkcCt_jEbzwX3ukj1dreL910Effz-vBo8YJGQ5iN=5tkvFJCg@mail.gmail.com> <CAJHtznwQf_tv_0TNKPMeQQ2nXrB6WgDCY6jS1y16Oafvk7SkTQ@mail.gmail.com>
In-Reply-To: <CAJHtznwQf_tv_0TNKPMeQQ2nXrB6WgDCY6jS1y16Oafvk7SkTQ@mail.gmail.com>
Date: Tue, 7 May 2019 12:28:41 +0100
Message-ID: <CALKiJKpQ69Ai_1ZbGpKeYinDmkontviMktotPZUaN=mWb1Abrw@mail.gmail.com>
To: PHP internals <internals@lists.php.net>
Content-Type: multipart/alternative; boundary="0000000000007cfb1605884a856a"
Subject: Re: [PHP-DEV] open_basedir?
From: rowan.collins@gmail.com (Rowan Collins)

--0000000000007cfb1605884a856a
Content-Type: text/plain; charset="UTF-8"

On Tue, 7 May 2019 at 11:38, Zeev Suraski <zeev@php.net> wrote:

> - especially here, where folks who rely on it for (even some level of)
> security would have a lot of work on their hands to come up with a
> different solution for isolation.
>


This point is worth dwelling on I think: if someone is using this feature
as part of their security right now, is it better than nothing?

I don't think it's sensible to assume that everyone seeing the deprecation
notice will immediately put into place a security review of their hosting,
so we should consider which of the following will lead to the best security
outcome:

a) open_basedir remains available, and people keep using it
b) open_basedir is removed in PHP 8, and people upgrade without reviewing
the rest of their security
c) open_basedir is removed in PHP 8, and people stay on PHP 7.4 instead of
upgrading

If scenario (a) gives even a slight security advantage over scenario (b),
we should think very carefully before removing the feature.

Regards,
-- 
Rowan Collins
[IMSoP]

--0000000000007cfb1605884a856a--