Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:105635
Return-Path: <jocelyn.fournier@gmail.com>
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 32499 invoked from network); 7 May 2019 23:51:11 -0000
Received: from unknown (HELO mail-wm1-f66.google.com) (209.85.128.66)
  by pb1.pair.com with SMTP; 7 May 2019 23:51:11 -0000
Received: by mail-wm1-f66.google.com with SMTP id p21so338480wmc.0
        for <internals@lists.php.net>; Tue, 07 May 2019 13:55:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=from:content-transfer-encoding:mime-version:subject:date:references
         :to:in-reply-to:message-id;
        bh=zyGxdTLMxNUOKWOCWjSjFS4liFEpFpPRMAcsI4yrmMo=;
        b=IhMjXby4FwKiT3f9qdILYf0Yt7GmHTNVe8GsI73AeD8LySV+nD1FfmOG/7BUDIVr1L
         f9ZgAHE+bmBv+UjoO8ERIcN27Tow/o0gkylp+SZC1GY0P5X/Yd5/83EL4KJJOUW0xmXU
         t9QWpMqqR9GgsxBo3T2NmbfLVr4TPAwx8oI8JmGFYg7bfwNvlrLVI1lV1IDF6Z1yQVCq
         pA+zF4lvuiR5ZhgwYRZzjBo33E5HuiqseiYNEGvI5f5L9cazq0sHSdC5Z7k6r6W3+LXE
         Uyy+YFKPFcSs94KhkmDuDY7WdlXE9m/ssWZADzgd5ncosxqeWRoQigfnoZQS7bdWZAm8
         Eh7A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:content-transfer-encoding:mime-version
         :subject:date:references:to:in-reply-to:message-id;
        bh=zyGxdTLMxNUOKWOCWjSjFS4liFEpFpPRMAcsI4yrmMo=;
        b=EAfL1RVW3/d1sSioQaTTk1+myIhrv6H1GCgBGrIIpGclo8X42qQPicpMaULkr13yLK
         0AAdQ3JHQKZiRt/SQ+1fC0nLEber4X3eoZGoKFK2sFskbmvi2InZZbxAg+eDFgattMWx
         MvU/jYMthQSMuKxBvsHHI+afCh3LaZgJeOVVS5l+vYrlDe5nS+exBZ0FV41wfiTCXdKk
         SQMNT8KDewf5DZLC1gvU6atV1cQ+Pa41/lkQS1y6mpZAFjcNDEsQd3DKDlDlyTtEZYtg
         w9v5oZVufMTHujj7xdCR8/C9F/84HTZkslbEqNK3WqI6t+LOUX5vZEHO0+lBJ8+mEID0
         kwcA==
X-Gm-Message-State: APjAAAXD8IOtv3QRbOwROgE3hIb6qRODNp6xdDpCnSwo99Bi+h2mWIVQ
	1Cb+OMo9XkLcMkl9Hfa05Szvb3em
X-Google-Smtp-Source: APXvYqxyCuIQA+6f6A/1bHOTX1LgrjQSrW9LfisarRstdCCdw+cHrrZf29K/HpVzACR7mrA7ZucONw==
X-Received: by 2002:a1c:3104:: with SMTP id x4mr257719wmx.23.1557262507982;
        Tue, 07 May 2019 13:55:07 -0700 (PDT)
Received: from [192.168.8.103] ([37.164.68.2])
        by smtp.gmail.com with ESMTPSA id v189sm462967wma.3.2019.05.07.13.55.07
        for <internals@lists.php.net>
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Tue, 07 May 2019 13:55:07 -0700 (PDT)
Content-Type: text/plain;
	charset=utf-8
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
Date: Tue, 7 May 2019 22:55:06 +0200
References: <CAF+90c-4-R4SYY_AAL679ZYBn2QAZTYAGXH6E6Bz1hYGN=MFcA@mail.gmail.com>
To: PHP internals <internals@lists.php.net>
In-Reply-To: <CAF+90c-4-R4SYY_AAL679ZYBn2QAZTYAGXH6E6Bz1hYGN=MFcA@mail.gmail.com>
Message-ID: <5D076029-231F-4380-9FAF-7DA7A33197EB@gmail.com>
X-Mailer: Apple Mail (2.3445.104.11)
Subject: Re: [PHP-DEV] open_basedir?
From: jocelyn.fournier@gmail.com (jocelyn fournier)

Hi!

> Le 7 mai 2019 =C3=A0 12:11, Nikita Popov <nikita.ppv@gmail.com> a =
=C3=A9crit :
>=20
> Hi internals,
>=20
> The open_basedir ini setting has two significant problems:
>=20
> 1. It is a major performance hit, because it disables the realpath =
cache.
>=20
> 2. Many people think it is a security feature and use it as such. =
However,
> open_basedir is in reality a "best effort" mechanism, with known
> workarounds and more regularly being found. Especially when it comes =
to
> interactions with 3rd party libraries, enforcing open_basedir is =
simply
> impossible.
>=20
> What open_basedir tries to do must be implemented on the operating =
system
> level to work reliably (and of course such mechanisms exist, such as =
jails,
> chroot and friends).
>=20
> I wonder if it is feasible to drop this ini setting? Enforcing this =
doesn't
> really seem like any of PHP's business. If not, I think we need to at =
least
>=20
> a) make it clear in the documentation that this is *not* a security =
option
> and only exists to prevent "accidents" and
> b) update the security policy (https://wiki.php.net/security) to state =
that
> open_basedir bypasses are not security issues. I believe this has been =
part
> of Debian's security policy for some time already.
>=20
> Regards,
> Nikita

The main issue with this option is that it=E2=80=99s used by default by =
hosting control panel like ispconfig / cpanel.
And because of that a lot of users:

1) Are using it without really knowing it
2) Could experienced a major performance impact because of that, but =
don=E2=80=99t really understand why

So deprecating it will at least lead to disabling by default the option =
in those software, which is good :)

--
Jocelyn Fournier
Founder
M : +33 6 51 21 54 10
https://www.softizy.com
Softizy - At your side to Optimize your PHP / MySQL applications