Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:29532 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 42026 invoked by uid 1010); 19 May 2007 01:54:16 -0000 Delivered-To: ezmlm-scan-internals@lists.php.net Delivered-To: ezmlm-internals@lists.php.net Received: (qmail 42011 invoked from network); 19 May 2007 01:54:16 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 19 May 2007 01:54:16 -0000 Authentication-Results: pb1.pair.com smtp.mail=stas@zend.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=stas@zend.com; sender-id=pass Received-SPF: pass (pb1.pair.com: domain zend.com designates 63.205.162.114 as permitted sender) X-PHP-List-Original-Sender: stas@zend.com X-Host-Fingerprint: 63.205.162.114 unknown Windows 2000 SP4, XP SP1 Received: from [63.205.162.114] ([63.205.162.114:64961] helo=us-ex1.zend.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id FF/7C-00717-8C85E464 for ; Fri, 18 May 2007 21:54:16 -0400 Received: from [127.0.0.1] ([192.168.16.109]) by us-ex1.zend.com with Microsoft SMTPSVC(6.0.3790.1830); Fri, 18 May 2007 18:54:14 -0700 Message-ID: <464E58C1.7000305@zend.com> Date: Fri, 18 May 2007 18:54:09 -0700 Organization: Zend Technologies User-Agent: Thunderbird 2.0.0.0 (Windows/20070326) MIME-Version: 1.0 To: Cristian Rodriguez CC: internals@lists.php.net References: <464DCB8C.90803@chiaraquartet.net> <7d5a202f0705181647r5dae4d46y3d95e320f47a9d34@mail.gmail.com> In-Reply-To: <7d5a202f0705181647r5dae4d46y3d95e320f47a9d34@mail.gmail.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 19 May 2007 01:54:14.0058 (UTC) FILETIME=[9A07C0A0:01C799B8] Subject: Re: [PHP-DEV] potential solution to user streams + allow_url_include=off From: stas@zend.com (Stanislav Malyshev) > What about permanently removing this (mis) "feature" ?? , Im yet to You can't remove this feature, unless you write separate file access layer for include and for the rest of the language. You can permanently set allow_url_include to 0, but if it's 0 by default it's more/less the same. -- Stanislav Malyshev, Zend Products Engineer stas@zend.com http://www.zend.com/