Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:54646
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Received-SPF: pass (pb1.pair.com: domain thelounge.net designates 91.118.73.15 as permitted sender)
Message-ID: <4E4BBF43.7060100@thelounge.net>
Date: Wed, 17 Aug 2011 15:16:51 +0200
Organization: the lounge interactive design
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:5.0) Gecko/20110707 Thunderbird/5.0
MIME-Version: 1.0
To: internals@lists.php.net
References: <4E4AE153.20704@thelounge.net> <CAEZPtU5G_hdqA9pgD3Dw1Wk5dm7LbuoaN64JnE7b5PSBVga=-A@mail.gmail.com> <4E4BB04C.3020200@thelounge.net> <CAEZPtU5aos6Uh8N1WapG0krK2hM9SXmCeAsaTD6eu1QmkPAPrw@mail.gmail.com>
In-Reply-To: <CAEZPtU5aos6Uh8N1WapG0krK2hM9SXmCeAsaTD6eu1QmkPAPrw@mail.gmail.com>
OpenPGP: id=7F780279;
	url=http://arrakis.thelounge.net/gpg/h.reindl_thelounge.net.pub.txt
Content-Type: multipart/signed; micalg=pgp-sha1;
 protocol="application/pgp-signature";
 boundary="------------enig1404A3F34FA8AB36D549E7FB"
Subject: Re: [PHP-DEV] https://bugs.php.net/bug.php?id=52312
From: h.reindl@thelounge.net (Reindl Harald)

--------------enig1404A3F34FA8AB36D549E7FB
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable



Am 17.08.2011 14:25, schrieb Pierre Joye:
> hi,
>=20
> On Wed, Aug 17, 2011 at 2:13 PM, Reindl Harald <h.reindl@thelounge.net>=
 wrote:
>=20
>> defaults on all servers i maintain since 10 years
>> "popen" is disabled per vhost with "php_admin_value suhosin.executor.f=
unc.blacklist"
>> since "disable_functions" is to dumb working on <Diretory>-directive
>>
>> disable_functions =3D "exec, passthru, shell_exec, system, proc_open, =
proc_close, proc_nice, proc_terminate,
>> proc_get_status, pcntl_exec, apache_child_terminate, posix_kill, posix=
_mkfifo, posix_setpgid, posix_setsid,
>> posix_setuid, mail, symlink"
>=20
> symlink is not disabled in most ISPs I work with or used (and that's
> quite a lot).

most setups out there are unsecure as hell
this is no reason to ignore proper configured

> Besides the arguments already stated in the bug report, there is no
> chance that we will change this. All past attempts to "optimize"
> open_basedir (and before safemode) has ended as shooting ourselves in
> the knees.=20

if "realpath_cache" would be a little smarter and include a hash
on the open_basedir there would be nothing to change on
open_basedir side

> It is still too slow for your needs? Don't use it and rely
> on system's solutions (or web server, like on IIS or many fastcgis).
> It sounds bad but that's how it is

the point is that "realpath_cache" is simply useless show me one well
thought setup without open_basedir and after that think about your
definition of "well thought" if you think you found one - even with
fastcgi and sepearted users there should never be any access outside
the docroot possible

so if "realpath_cache" will not be fixed in combination with "open_basedi=
r"
it can be totally removed also for the handful of non-shared hosts



--------------enig1404A3F34FA8AB36D549E7FB
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk5Lv0MACgkQhmBjz394AnlvYQCgg7ZWY6/z0xdiHMcbV81vp839
irgAnjZIEEBh7BgxxmAdt1BrpIA+u/Fe
=ncgp
-----END PGP SIGNATURE-----

--------------enig1404A3F34FA8AB36D549E7FB--