 |
 |
 |
 |
|
|
Date: 10/21/00
- Next message: Tjabo Kloppenburg: "[PHP-DEV] Re: PHP 4.0 Bug #6772 Updated: wrong documentaion for strrchr and strrpos"
- Previous message: Sascha Schumann: "Re: [PHP-DEV] Compile failure with latest snapshots when enabling trans-sid"
- In reply to: Andi Gutmans: "Re: [PHP-DEV] patch - adds new setting safe_mode_hide_env_vars"
- Next in thread: Andi Gutmans: "Re: [PHP-DEV] patch - adds new setting safe_mode_hide_env_vars"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I need to correct myself, safe_mode does allow exec, but only if
safe_mode_exec_dir is allowed, and then if
someone decided to do that, it would be there responsibility to secure
those commands.
-Jason
-- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: php-dev-unsubscribe <email protected> For additional commands, e-mail: php-dev-help <email protected> To contact the list administrators, e-mail: php-list-admin <email protected>
- Next message: Tjabo Kloppenburg: "[PHP-DEV] Re: PHP 4.0 Bug #6772 Updated: wrong documentaion for strrchr and strrpos"
- Previous message: Sascha Schumann: "Re: [PHP-DEV] Compile failure with latest snapshots when enabling trans-sid"
- In reply to: Andi Gutmans: "Re: [PHP-DEV] patch - adds new setting safe_mode_hide_env_vars"
- Next in thread: Andi Gutmans: "Re: [PHP-DEV] patch - adds new setting safe_mode_hide_env_vars"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]