Yasuo Ohgaki wrote: > Christian Stocker wrote: > >> another little thingie: the description to open_basedir in the >> distributed >> php.ini is between all the safe_mode config, therfore maybe a lot of >> people don't know, that one can use this whithout safe_mode enabled. >> > > I agree. The directive name should be "safe_mode_open_dasedir" > in first place... > > I added note to php.ini-* > >
I didn't realized how open_basedir works and sander pointed out. Thanks Sander. Anyway, php_checkuid() does not check open_basedir and I immediately noticed user bypass open_basedir with pg_lo_import(). I guess there are many functions like pg_lo_import(). -- Yasuo Ohgaki -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, visit: http://www.php.net/unsub.php
