Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:13105
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Message-ID: <008701c4a7ed$ffd58e90$af87e5a9@ohr.berkeley.edu>
To: "Rasmus Lerdorf" <rasmus@php.net>,
	"Andi Gutmans" <andi@zend.com>
Cc: <internals@lists.php.net>
References: <5.1.0.14.2.20040930225715.02f0e4b0@localhost> <5.1.0.14.2.20041001113226.02efa7e0@localhost> <Pine.LNX.4.58.0410011155200.8190@colo>
Date: Fri, 1 Oct 2004 12:36:50 -0700
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Subject: Re: [PHP-DEV] Re: realpath patch
From: saramg@berkeley.edu ("Sara Golemon")

> With safemode on they can't do this symlink trick directly from
> php because PHP's symlink() safemode checks source and target paths.
>
Good call...


> The
> only case that trips us up is the one where a user has direct access to
> create whatever symlinks he wants in his own directory and then by hitting
> that symlink through the web server he is effectively reading any file the
> web server user id has permission to read and thereby bypassing safemode.
>
I wouldn't consider it uncommon for shared hosting users to have a shell
account....

> But like my syscall patches, realpath caching isn't something all that
> many really need.  Turning it off when safemode/open_basedir is on should
> be fine.
>
I can agree with that.  Even though the caching would be a real
"nice-to-have".  It's much cleaner to just disable it in cases where it'll
cause more harm than good.

I *do* want to point out that the current form of the patch won't build
under ZTS though.    virtual_file_ex has no TSRMLS_DC in its declaration but
it makes use of CWDG().

-Sara