Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:54644
Return-Path: <johannes@schlueters.de>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 10043 invoked from network); 17 Aug 2011 12:25:25 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 17 Aug 2011 12:25:25 -0000
Authentication-Results: pb1.pair.com smtp.mail=johannes@schlueters.de; spf=permerror; sender-id=unknown
Authentication-Results: pb1.pair.com header.from=johannes@schlueters.de; sender-id=unknown
Received-SPF: error (pb1.pair.com: domain schlueters.de from 217.114.211.66 cause and error)
X-PHP-List-Original-Sender: johannes@schlueters.de
X-Host-Fingerprint: 217.114.211.66 config.schlueters.de  
Received: from [217.114.211.66] ([217.114.211.66:47937] helo=config.schlueters.de)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id EF/D0-03278-433BB4E4 for <internals@lists.php.net>; Wed, 17 Aug 2011 08:25:25 -0400
Received: from [192.168.2.230] (ppp-93-104-59-4.dynamic.mnet-online.de [93.104.59.4])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(Client did not present a certificate)
	by config.schlueters.de (Postfix) with ESMTPSA id 1FB7D77A95;
	Wed, 17 Aug 2011 14:25:21 +0200 (CEST)
To: Reindl Harald <h.reindl@thelounge.net>
Cc: internals@lists.php.net
In-Reply-To: <4E4BB04C.3020200@thelounge.net>
References: <4E4AE153.20704@thelounge.net>
	 <CAEZPtU5G_hdqA9pgD3Dw1Wk5dm7LbuoaN64JnE7b5PSBVga=-A@mail.gmail.com>
	 <4E4BB04C.3020200@thelounge.net>
Content-Type: text/plain; charset="UTF-8"
Date: Wed, 17 Aug 2011 14:25:18 +0200
Message-ID: <1313583918.3951.46.camel@guybrush>
Mime-Version: 1.0
X-Mailer: Evolution 2.30.2 
Content-Transfer-Encoding: 7bit
Subject: Re: [PHP-DEV] https://bugs.php.net/bug.php?id=52312
From: johannes@schlueters.de (Johannes =?ISO-8859-1?Q?Schl=FCter?=)

On Wed, 2011-08-17 at 14:13 +0200, Reindl Harald wrote:
> 
> Am 17.08.2011 13:14, schrieb Pierre Joye:
> > On Tue, Aug 16, 2011 at 11:29 PM, Reindl Harald <h.reindl@thelounge.net> wrote:
> >> Hi
> >>
> >> https://bugs.php.net/bug.php?id=52312
> >>
> >> does the security-problem in combination with open_basedir only
> >> occur if there are symlinks created?
> >>
> >> * i guess in most secure setups "symlink" is disabled
> > 
> > For what I can see, almost no setup disables the symlink functions in
> > php, even less in the shell.
> 
> defaults on all servers i maintain since 10 years
> "popen" is disabled per vhost with "php_admin_value suhosin.executor.func.blacklist"
> since "disable_functions" is to dumb working on <Diretory>-directive
> 
> disable_functions = "exec, passthru, shell_exec, system, proc_open, proc_close, proc_nice, proc_terminate,
> proc_get_status, pcntl_exec, apache_child_terminate, posix_kill, posix_mkfifo, posix_setpgid, posix_setsid,
> posix_setuid, mail, symlink"

All that doesn't mean there can't be symlinks. Maybe they can't be
created using PHP but they still could exist.

johannes