Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:53150
Return-Path: <tyra3l@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 17373 invoked from network); 7 Jun 2011 15:06:26 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 7 Jun 2011 15:06:26 -0000
Authentication-Results: pb1.pair.com smtp.mail=tyra3l@gmail.com; spf=pass; sender-id=pass
Authentication-Results: pb1.pair.com header.from=tyra3l@gmail.com; sender-id=pass; domainkeys=bad
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.161.170 as permitted sender)
DomainKey-Status: bad
X-DomainKeys: Ecelerity dk_validate implementing draft-delany-domainkeys-base-01
X-PHP-List-Original-Sender: tyra3l@gmail.com
X-Host-Fingerprint: 209.85.161.170 mail-gx0-f170.google.com  
Received: from [209.85.161.170] ([209.85.161.170:41992] helo=mail-gx0-f170.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 60/10-15404-24E3EED4 for <internals@lists.php.net>; Tue, 07 Jun 2011 11:05:39 -0400
Received: by gxk27 with SMTP id 27so2398210gxk.29
        for <internals@lists.php.net>; Tue, 07 Jun 2011 08:05:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=domainkey-signature:mime-version:sender:in-reply-to:references:date
         :x-google-sender-auth:message-id:subject:from:to:cc:content-type;
        bh=8I2utfih8K/fAkIVN5ehoc0oOwh7SqFqDLO6PUNVevQ=;
        b=tlDlc6jKhk88qYEvdc8aykJTqxUTojvsWwfKELRSTjDEb8lowlBih6jwut7a9qFvwn
         YYLO/mXWE6Ow6bVS4Kg4fXn88FPzfd0bj5pqhPly0HXiNiAH3LB3WBslygTPmbQOTIZY
         CuBbxkWVQRo7atbDyimVbfnXU+oW825bN9Kzk=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=gamma;
        h=mime-version:sender:in-reply-to:references:date
         :x-google-sender-auth:message-id:subject:from:to:cc:content-type;
        b=Oju+RRpmzIrMQoNwlFflE+FXVAVB3ssVEsBZVWkngSS/xW1Usg/EjCVAt/jJSXE1rb
         /ZXHKLYr7bYg3AiK5waSaT2dqiChsSCPIpdD3/cyS4w5nPv0PxYvsjGu7mx22ZLKnB9h
         4vfrXLpkLlUFdLyuyZefhzpPpKPLTz0IRfvZk=
MIME-Version: 1.0
Received: by 10.147.165.11 with SMTP id s11mr3720068yao.3.1307459134321; Tue,
 07 Jun 2011 08:05:34 -0700 (PDT)
Sender: tyra3l@gmail.com
Received: by 10.147.168.3 with HTTP; Tue, 7 Jun 2011 08:05:34 -0700 (PDT)
In-Reply-To: <BANLkTimFaei0cYH3mwxE2VrTw3V204sabA@mail.gmail.com>
References: <8757232E56758B42B2EE4F9D2CA019C901499F97@US-EX2.zend.net>
	<BANLkTikau4c4-HzkGAXG15AMS2tr6fe+NA@mail.gmail.com>
	<97.45.23189.8060DED4@pb1.pair.com>
	<BANLkTinULsKfi5MUF0GA4v9z076zqRc_OA@mail.gmail.com>
	<BANLkTinOKLQ0CEwJaOEJZZNgF23U6OjWSA@mail.gmail.com>
	<4DED5F9B.7060101@thelounge.net>
	<BANLkTik8_pD8tZRBZ+So52S9Gi29CuD57w@mail.gmail.com>
	<4DEDC9F5.3030403@thelounge.net>
	<4DEDF049.7050504@gmail.com>
	<4DEDF216.6070308@thelounge.net>
	<4DEE1D47.8060209@gmail.com>
	<4DEE21C2.5060305@thelounge.net>
	<BANLkTikJFejYK07e2bapX0Hh4D97MtjdeA@mail.gmail.com>
	<4DEE2332.3050705@thelounge.net>
	<BANLkTikdUuaBv5i3y70axCLb6oYnutHNrw@mail.gmail.com>
	<BANLkTimFaei0cYH3mwxE2VrTw3V204sabA@mail.gmail.com>
Date: Tue, 7 Jun 2011 17:05:34 +0200
X-Google-Sender-Auth: OiY2ObPjk191VN--PbHevOJjbPE
Message-ID: <BANLkTimvGh+CKM8P=xjpNECfLU7XAasqsA@mail.gmail.com>
To: Martin Scotta <martinscotta@gmail.com>
Cc: Reindl Harald <h.reindl@thelounge.net>, internals@lists.php.net
Content-Type: multipart/alternative; boundary=00151758b5c042769b04a5208da6
Subject: Re: [PHP-DEV] Bundling "modern" extensions
From: info@tyrael.hu (Ferenc Kovacs)

--00151758b5c042769b04a5208da6
Content-Type: text/plain; charset=UTF-8

On Tue, Jun 7, 2011 at 4:59 PM, Martin Scotta <martinscotta@gmail.com>wrote:

>
>
>  Martin Scotta
>
>
> On Tue, Jun 7, 2011 at 10:36 AM, Ferenc Kovacs <info@tyrael.hu> wrote:
>
>> On Tue, Jun 7, 2011 at 3:10 PM, Reindl Harald <h.reindl@thelounge.net
>> >wrote:
>>
>> >
>> >
>> > Am 07.06.2011 15:08, schrieb Ferenc Kovacs:
>> > > On Tue, Jun 7, 2011 at 3:04 PM, Reindl Harald <h.reindl@thelounge.net
>> > >wrote:
>> > >
>> > >>
>> > >>
>> > >> Am 07.06.2011 14:44, schrieb David Muir:
>> > >>> On 07/06/11 18:40, Reindl Harald wrote:
>> > >>>> there is a reason for example to disallow many functions
>> > >>>> on a webserver - so every API has to make sure they
>> > >>>> can not be bypassed
>> > >>>>
>> > >>>> "because we can" is no valid reason for everything because
>> > >>>> we can install binary extension as they exist now and
>> > >>>> if you can not you are missing the permissions for some
>> > >>>> good reasons
>> > >>>>
>> > >>>
>> > >>> So you're saying that PECL, PNI or FFI should should be actively
>> > >>> discouraged because of security concerns?
>> > >>
>> > >> WHERE i said this?
>> > >> PECL-Extensions can NOT be enabled by the user
>> > >>
>> > >>
>> > > except if dl is enabled of course.
>> >
>> > i think nobody out there will enable this and hope such
>> > crazy things are not enabled by default!
>> >
>> >
>> sadly there are many crazy people out there:
>>
>> http://www.google.hu/#sclient=psy&hl=hu&source=hp&q=intitle:phpinfo()+enable_dl&aq=f&aqi=&aql=&oq=&pbx=1&bav=on.2,or.r_gc.r_pw.&fp=580ca0074daf5780&biw=1280&bih=939
>>
>>
> Most admins are not even aware of this, others really don't care -- how
> many host are up to date?
> So why relying on them?
>
>
I didn't intended to use that to block your feature request.
I've just show that there are people ran php installs with enable_dl = On
personally I wouldn't mind if we would drop the support for the dl, but
thats offtopic here.

Tyrael

--00151758b5c042769b04a5208da6--