unread
Hi
I am thinking of making a mod to this to help people using scripts on my
virtual servers.
At present when in SAFE_MODE the pipe '|' and redirect '<' '>' entries
are escaped, and the reasons for this are well understood.
However, I am thinking that if the executable is in safe_mode_exec_dir
and the command being 'piped' to is also in the safe_mode_exec_dir then
this would be safe to allow.
Also, if a file beinf redirected via < or > is within the DOCUMENT_ROOT
then this should also be allowed.
Any views on this?
Regards, Jamie.