#33723 [NEW]: php_value overrides php_admin_value

Sat, 16 Jul 2005 04:22:23 -0700 

From:             ezmlm at mail dot ru
Operating system: Linux
PHP version:      5.0.4
PHP Bug Type:     Apache related
Bug description:  php_value overrides php_admin_value

Description:
------------
PHP5 for apache 1.3.33 built as DSO allows php_admin_value
(php_admin_flag) options marked as PHP_INI_SYSTEM to be reset in .htaccess
files by using php_value (php_flag). safe_mode for example.

To demonstrate the problem in php.ini set safe_mode = Off, in httpd.conf,
set:
php_admin_value safe_mode on

Get phpinfo to verify that safe_mode is on.

Now create .htaccess file in document_root containing:
php_flag safe_mode off

(or even php_flag safe_mode on)

Get phpinfo again and note that safe_mode was reset to off (php.ini
initial value)



-- 
Edit bug report at http://bugs.php.net/?id=33723&edit=1
-- 
Try a CVS snapshot (php4):   http://bugs.php.net/fix.php?id=33723&r=trysnapshot4
Try a CVS snapshot (php5.0): 
http://bugs.php.net/fix.php?id=33723&r=trysnapshot50
Try a CVS snapshot (php5.1): 
http://bugs.php.net/fix.php?id=33723&r=trysnapshot51
Fixed in CVS:                http://bugs.php.net/fix.php?id=33723&r=fixedcvs
Fixed in release:            http://bugs.php.net/fix.php?id=33723&r=alreadyfixed
Need backtrace:              http://bugs.php.net/fix.php?id=33723&r=needtrace
Need Reproduce Script:       http://bugs.php.net/fix.php?id=33723&r=needscript
Try newer version:           http://bugs.php.net/fix.php?id=33723&r=oldversion
Not developer issue:         http://bugs.php.net/fix.php?id=33723&r=support
Expected behavior:           http://bugs.php.net/fix.php?id=33723&r=notwrong
Not enough info:             
http://bugs.php.net/fix.php?id=33723&r=notenoughinfo
Submitted twice:             
http://bugs.php.net/fix.php?id=33723&r=submittedtwice
register_globals:            http://bugs.php.net/fix.php?id=33723&r=globals
PHP 3 support discontinued:  http://bugs.php.net/fix.php?id=33723&r=php3
Daylight Savings:            http://bugs.php.net/fix.php?id=33723&r=dst
IIS Stability:               http://bugs.php.net/fix.php?id=33723&r=isapi
Install GNU Sed:             http://bugs.php.net/fix.php?id=33723&r=gnused
Floating point limitations:  http://bugs.php.net/fix.php?id=33723&r=float
No Zend Extensions:          http://bugs.php.net/fix.php?id=33723&r=nozend
MySQL Configuration Error:   http://bugs.php.net/fix.php?id=33723&r=mysqlcfg

Reply via email to