Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:55637 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 38580 invoked from network); 27 Sep 2011 08:58:28 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 27 Sep 2011 08:58:28 -0000 Authentication-Results: pb1.pair.com header.from=h.reindl@thelounge.net; sender-id=pass Authentication-Results: pb1.pair.com smtp.mail=h.reindl@thelounge.net; spf=pass; sender-id=pass Received-SPF: pass (pb1.pair.com: domain thelounge.net designates 91.118.73.15 as permitted sender) X-PHP-List-Original-Sender: h.reindl@thelounge.net X-Host-Fingerprint: 91.118.73.15 mail.thelounge.net Windows 98 (1) Received: from [91.118.73.15] ([91.118.73.15:34700] helo=mail.thelounge.net) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 0D/53-08680-130918E4 for ; Tue, 27 Sep 2011 04:58:26 -0400 Received: from rh.thelounge.net (rh.thelounge.net [10.0.0.99]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by mail.thelounge.net (Postfix) with ESMTPSA id 7BD4BB0; Tue, 27 Sep 2011 10:58:22 +0200 (CEST) Message-ID: <4E81902E.1020304@thelounge.net> Date: Tue, 27 Sep 2011 10:58:22 +0200 Organization: the lounge interactive design User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:6.0.2) Gecko/20110906 Thunderbird/6.0.2 MIME-Version: 1.0 To: Mailing-List php X-Enigmail-Version: 1.3.2 OpenPGP: id=7F780279; url=http://arrakis.thelounge.net/gpg/h.reindl_thelounge.net.pub.txt Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig386C0E8820E2DD4CC7152931" Subject: open_basedir bypass From: h.reindl@thelounge.net (Reindl Harald) --------------enig386C0E8820E2DD4CC7152931 Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable below a correct open_basedir restriction but why can fopen() create this file outside the basedir and after that the restriction is active? this means in other words: fopen() can empty files outside the basedir if their permissions are open enough Sep 27 10:53:26 open_basedir restriction in effect. File(/tmp/rhcsvz8QeBL= ) is not within the allowed path(s): (/etc/httpd/conf/panel:/Volumes/dune/www-servers/phpincludes:/usr/share/p= ear) Sep 27 10:53:26 PHP Warning: fopen(/tmp/rhcsvz8QeBL): failed to open stre= am: Operation not permitted in /Volumes/dune/www-servers/phpincludes/global_rh_csv.inc.php on line 2 [root@arrakis:~]$ stat /tmp/rhcsvz8QeBL File: =84/tmp/rhcsvz8QeBL=93 Size: 0 Blocks: 0 IO Block: 4096 regul=E4re le= ere Datei Device: 10h/16d Inode: 6310677 Links: 1 Access: (0600/-rw-------) Uid: ( 48/ apache) Gid: ( 48/ apache) Access: 2011-09-27 10:53:26.894004321 +0200 Modify: 2011-09-27 10:53:26.894004321 +0200 Change: 2011-09-27 10:53:26.894004321 +0200 --------------enig386C0E8820E2DD4CC7152931 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk6BkC4ACgkQhmBjz394AnmLggCfdsiy+FaQBEEeh2SOYNcHaBrX t6AAn1n5Bmp5SmKBXc4nKsJ4fUw20Vzb =+J1L -----END PGP SIGNATURE----- --------------enig386C0E8820E2DD4CC7152931--