On 8/26/07, Mark Krenz <[EMAIL PROTECTED]> wrote: > No, this is the wrong way to approach the problem.
No, this is the right way, language level security does not replace OS level security. > I'm bringing it up because its something that > needs to be fixed in PHP. No, fixing this issue in PHP itself is the wrong way, the only issues that needs to be fixed in PHP are. 1. security holes of PHP itself. 2. the PHP documentation in the cases it promotes bad programming practises. 3. disabling include() and require() with URls **permantently** may help as well ;P > But I'm one of the ones from the 90s that cares greatly about > security. If you care greatly about security then safe_mode is certainly **not** what you need, if you think so, you have been seriously misguided. -- http://www.kissofjudas.net/ -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
