Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:33035
Return-Path: <penguin@php.net>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 23808 invoked by uid 1010); 6 Nov 2007 03:13:53 -0000
Delivered-To: ezmlm-scan-internals@lists.php.net
Delivered-To: ezmlm-internals@lists.php.net
Received: (qmail 23792 invoked from network); 6 Nov 2007 03:13:53 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 6 Nov 2007 03:13:53 -0000
Authentication-Results: pb1.pair.com header.from=penguin@php.net; sender-id=unknown
Authentication-Results: pb1.pair.com smtp.mail=penguin@php.net; spf=unknown; sender-id=unknown
Received-SPF: unknown (pb1.pair.com: domain php.net does not designate 195.41.46.235 as permitted sender)
X-PHP-List-Original-Sender: penguin@php.net
X-Host-Fingerprint: 195.41.46.235 pfepa.post.tele.dk Linux 2.5 (sometimes 2.4) (4)
Received: from [195.41.46.235] ([195.41.46.235:34944] helo=pfepa.post.tele.dk)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id E9/93-03007-0FBDF274 for <internals@lists.php.net>; Mon, 05 Nov 2007 22:13:53 -0500
Received: from workpenguin (0x503e79e7.bynxx18.adsl-dhcp.tele.dk [80.62.121.231])
	by pfepa.post.tele.dk (Postfix) with SMTP id C0767FAC014;
	Tue,  6 Nov 2007 04:13:49 +0100 (CET)
To: mark@suso.org (Mark Krenz)
Cc: internals@lists.php.net
Date: Tue, 06 Nov 2007 04:13:36 +0100
Message-ID: <vpmvi3lklaqhh9sfhi7n18qtmtcr45iekn@4ax.com>
References: <20070826193146.GQ16782@arvo.suso.org> <46D1ED8A.2060302@zend.com> <20070827024804.GS16782@arvo.suso.org> <46D26834.9040001@lerdorf.com> <20071105171202.GA12944@arvo.suso.org>
In-Reply-To: <20071105171202.GA12944@arvo.suso.org>
X-Mailer: Forte Agent 1.91/32.564
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
Subject: Re: [PHP-DEV] Safe mode being removed in PHP6?
From: penguin@php.net (Peter Brodersen)

On Mon, 5 Nov 2007 17:12:03 +0000, in php.internals mark@suso.org
(Mark Krenz) wrote:

>  See what I'm getting at?  File ownership checking is just one part of
>safe mode, exec dir restrictions are another major part.  If you remove
>this, it will open up a whole can of worms.

It has earlier been stated that it would be a fine idea to unbundle
safe_mode_exec_dir from safe_mode:

http://news.php.net/php.internals/20417

I suppose that now is "later" :)


Basically it comes down to serve as a central switch for exec like
functions instead of maintaining an ever-changing list of functions
under disable_functions which would make upgrades cumbersome.

--=20
- Peter Brodersen