From:             [EMAIL PROTECTED]
Operating system: Solaris 2.5
PHP version:      4.0.5
PHP Bug Type:     Documentation problem
Bug description:  Life of environment variable set by putenv() not documented well

Visibility scope of the environment variables set by
putenv() is not documented.  It is important to know whether
an environment variable set in one script can be seen from
another script (served by the same Apache child, for example).

I'm writing a secure application that passes user name and
password in environment varialbles to a setuid C program,
which checks the password against the shadow password file
to authenticate users.  It is crucial for me to know whether
such approach has any security implications, derriving fromt
the visibility scope of environment variables set in PHP.

Many thanks,
Arcady Genkin

Edit Bug report at:

PHP Development Mailing List <>
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to