Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:74937
Return-Path: <krebs.seb@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 77034 invoked from network); 17 Jun 2014 09:35:21 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 17 Jun 2014 09:35:21 -0000
Authentication-Results: pb1.pair.com header.from=krebs.seb@gmail.com; sender-id=pass
Authentication-Results: pb1.pair.com smtp.mail=krebs.seb@gmail.com; spf=pass; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 74.125.82.46 as permitted sender)
X-PHP-List-Original-Sender: krebs.seb@gmail.com
X-Host-Fingerprint: 74.125.82.46 mail-wg0-f46.google.com  
Received: from [74.125.82.46] ([74.125.82.46:38646] helo=mail-wg0-f46.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id E2/80-08302-7DB00A35 for <internals@lists.php.net>; Tue, 17 Jun 2014 05:35:20 -0400
Received: by mail-wg0-f46.google.com with SMTP id y10so6814984wgg.29
        for <internals@lists.php.net>; Tue, 17 Jun 2014 02:35:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:from:date:message-id:subject:to
         :cc:content-type;
        bh=moaqTez2W/1MBb/upLftwIG1kF7FIr7OMhnVBmm4icU=;
        b=v191ev6UWZVGYr8deYhiP1bH9QDfFn2fY3v1DdSTRFbeTs3z4LMpcx8/8eArxjo3h4
         uNfSNMaqVFLvCtux691cc8oAzixstNjHv6l/Guvq/2g3/jYMnx38jlkuIaVKLUF9evn4
         AX2FbQsljjpAWY0zhK4h6xUY9gL1KLWnGUzygq37f8HDeUqteqRfoEPMLpvu7pV1/1Gx
         1j56w/UoHhsj2yRYpHh84Vqg+EbzCpAne4swqywoeY/ZrJS4gsEwYI1EWZlpoLL/w2Y6
         Xw7nrcIbaPNfVUi79aYLdnFszj9f9CAVSzTGwPN9SRkXcCw3ckzLCHQR86Ud7a3n2EcH
         dKhw==
X-Received: by 10.181.13.5 with SMTP id eu5mr25993770wid.58.1402997717278;
 Tue, 17 Jun 2014 02:35:17 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.216.127.195 with HTTP; Tue, 17 Jun 2014 02:34:37 -0700 (PDT)
In-Reply-To: <53A00AC1.2050001@lsces.co.uk>
References: <CAEZPtU7rc+JpguO=Ke8UmiLLaidvyJEQ81C9Lsvn8yHgkp=+qw@mail.gmail.com>
 <53A00AC1.2050001@lsces.co.uk>
Date: Tue, 17 Jun 2014 11:34:37 +0200
Message-ID: <CALtuQzDC6qA=hXNC42MFEU3bHyKtNOB07LHQY4yeH22p5Vvy3Q@mail.gmail.com>
To: Lester Caine <lester@lsces.co.uk>
Cc: PHP internals list <internals@lists.php.net>
Content-Type: multipart/alternative; boundary=f46d043be04c8f258304fc04dc9e
Subject: Re: [PHP-DEV] PHP6, drop open_basedir?
From: krebs.seb@gmail.com (Sebastian Krebs)

--f46d043be04c8f258304fc04dc9e
Content-Type: text/plain; charset=UTF-8

2014-06-17 11:30 GMT+02:00 Lester Caine <lester@lsces.co.uk>:

> On 17/06/14 09:26, Pierre Joye wrote:
> > One of the last reminding so called "security" feature is open_basedir.
> >
> > On Windows f.e. it is very easy to create application pool with the
> > right users/permissions settings (IIS) or only permissions settings
> > (Apache). It is not possible to create one user per host on Apache
> > using mod_php but I think it is acceptable as it is mostly used as
> > development server or dedicated apps.
> >
> > On linux, fcgi/fpm with linux permissions systems allow pretty much
> > the same. And my solutions exist for a per user/application isolation
> > system.
> >
> > I think it is not worth the effort to keep maintaining something that
> > will never be as safe as system level permissions.
> >
> > What do you think about removing it in php 6? Thoughts?
>
> Managing security on servers that one has full access to is not the main
> target of open_basedir?


In my experiene it only leads to a false sense of security. I've seen it
more than once, that people just set a value there and believed, that they
are now safe. On the other hand they wonder, why many things were broken,
so they loosen the restrictions again.


> It has a useful place when working with shared
> hosting?


I'd recommend a using VMs, or container instead.


> While on-line storage costs are going down, sharing code across
> a few sites while maintaining maintaining a level of isolation between
> specific content is not easy to achieve in other ways?
>

Composer?


>
> The usage I'm seeing is that open_basedir provides access to the site
> files and a shared set of resources used across several sites. This is
> probably not the best way of doing things but is one documented on
> several hosting packages. The examples I could link to require a private
> login :( Just a pointer to something that provides an alternative
> resolution would obviously be acceptable. With many of these facilities
> it's not simply removing something but much more important to provide
> education on the alternatives?
>
> --
> Lester Caine - G8HFL
> -----------------------------
> Contact - http://lsces.co.uk/wiki/?page=contact
> L.S.Caine Electronic Services - http://lsces.co.uk
> EnquirySolve - http://enquirysolve.com/
> Model Engineers Digital Workshop - http://medw.co.uk
> Rainbow Digital Media - http://rainbowdigitalmedia.co.uk
>
> --
> PHP Internals - PHP Runtime Development Mailing List
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>


-- 
github.com/KingCrunch

--f46d043be04c8f258304fc04dc9e--