Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:13588
Return-Path: <sterling.hughes@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 5301 invoked by uid 1010); 29 Oct 2004 08:04:24 -0000
Delivered-To: ezmlm-scan-internals@lists.php.net
Delivered-To: ezmlm-internals@lists.php.net
Received: (qmail 5205 invoked from network); 29 Oct 2004 08:04:24 -0000
Received: from unknown (HELO wproxy.gmail.com) (64.233.184.206)
  by pb1.pair.com with SMTP; 29 Oct 2004 08:04:24 -0000
Received: by wproxy.gmail.com with SMTP id 44so383985wri
        for <internals@lists.php.net>; Fri, 29 Oct 2004 01:04:23 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
        s=beta; d=gmail.com;
        h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:references;
        b=AE+ShmZl0iAweFye5nlyIHLUoWtYyjEZqg4jEU/J2/ZW81FuUn/bhOrtJ8q9Nnkqp514ydJQ72jOZJz0rqNljCkBSX0cU6dr3sPc5/SrYyxPYr2P6X4OWbaKq/dhgazA9zOJQTi8k0C0Pn2WxHArzCSyHyvpFnvS01Gttj+pQck=
Received: by 10.38.15.26 with SMTP id 26mr679945rno;
        Fri, 29 Oct 2004 01:04:23 -0700 (PDT)
Received: by 10.38.75.76 with HTTP; Fri, 29 Oct 2004 01:04:23 -0700 (PDT)
Message-ID: <24e5f3b704102901044714577f@mail.gmail.com>
Date: Fri, 29 Oct 2004 01:04:23 -0700
Reply-To: sterling@apache.org
To: Antony Dovgal <tony2001@phpclub.net>
Cc: internals@lists.php.net
In-Reply-To: <20041029105149.3b150c7d.tony2001@phpclub.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
References: <41811956.4050405@caedmon.net>
	 <20041029105149.3b150c7d.tony2001@phpclub.net>
Subject: Re: [PHP-DEV] curl_init() is bypassing safe_mode & open_basedir restrictions
From: sterling.hughes@gmail.com (Sterling Hughes)

no....  curl does not need to respect php's safemode, adding such
checks at this level is wrong.  people who compile curl, can do so
without local file access, and this will solve their problem.


On Fri, 29 Oct 2004 10:51:49 +0400, Antony Dovgal <tony2001@phpclub.net> wrote:
> On Thu, 28 Oct 2004 12:07:50 -0400
> Sean Coates <sean@caedmon.net> wrote:
> 
> > Is this legitimate?
> > I took a (very) quick look at bugs, and didn't see it.
> 
> you can find patches for all branches in attachment.
> comments are welcome.
> 
> --
> Wbr,
> Antony Dovgal aka tony2001
> tony2001@phpclub.net || antony@dovgal.com
> 
> 
>