unread
Well, safe_mode could prevent someone of doing a shell_exec("cat
/home/otheruser/web/config.php"); open_basedir can't do the same
thing.disabled_functions=shell_exec, etc....
But safe_mode is more safe because it disables these functions
altogether? It's difficult to maintain a complete list of "bad"
functions in php.ini.
-mp.