From: [EMAIL PROTECTED] Operating system: linux 245 PHP version: 4.0.5 PHP Bug Type: *Function Specific Bug description: FileFunction macro in filestat.c appears to be missing a check (fix included) safe_mode off open_basedir in effect disable_functions=system exec passthru chmod,...etc... For ISPs safe_mode is too limiting; we use open_basedir extensively. However, many is_* functions and all function calls which use the FileFunction macro in filestat.c ignore the open_basedir restriction completely (the only way around this of course is to disable all those useful funcs). Fix follows: Add this line after convert_to_string_ex(filename); \ in filestat.c (about line 628): if (php_check_open_basedir((*filename)->value.str.val)) RETURN_FALSE; \ -- Edit Bug report at: http://bugs.php.net/?id=11563&edit=1 -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
