goba Sat Dec 22 11:55:40 2001 EDT
Modified files:
/phpdoc/en/features safe-mode.xml
Log:
s/Safe Mode/safe mode/ as Jim corrected these in other places.
Adding ini link to open_basedir
Index: phpdoc/en/features/safe-mode.xml
diff -u phpdoc/en/features/safe-mode.xml:1.17 phpdoc/en/features/safe-mode.xml:1.18
--- phpdoc/en/features/safe-mode.xml:1.17 Wed Dec 12 15:46:35 2001
+++ phpdoc/en/features/safe-mode.xml Sat Dec 22 11:55:40 2001
@@ -1,16 +1,17 @@
<?xml version="1.0" encoding="iso-8859-1"?>
-<!-- $Revision: 1.17 $ -->
+<!-- $Revision: 1.18 $ -->
<chapter id="features.safe-mode">
<title>Safe Mode</title>
<para>
- Safe Mode is an attempt to solve the shared-server security problem. It is
- architecturally incorrect to try to solve this problem at the PHP level,
- but since the alternatives at the web server and OS levels aren't very
- realistic, many people, especially ISP's, use Safe Mode for now.
+ The PHP safe mode is an attempt to solve the shared-server security
+ problem. It is architecturally incorrect to try to solve this
+ problem at the PHP level, but since the alternatives at the web
+ server and OS levels aren't very realistic, many people,
+ especially ISP's, use safe mode for now.
</para>
<para>
- The configuration directives that control Safe Mode are:
+ The configuration directives that control safe mode are:
<programlisting role="ini">
<![CDATA[
safe_mode = Off
@@ -40,7 +41,7 @@
?>
]]>
</programlisting>
- results in this error when Safe Mode is enabled:
+ results in this error when safe mode is enabled:
<screen>
<![CDATA[
Warning: SAFE MODE Restriction in effect. The script whose uid is 500 is not
@@ -50,8 +51,9 @@
</para>
<para>
If instead of <link linkend="ini.safe-mode">safe_mode</link>, you set an
- open_basedir directory then all file operations will be limited to files
- under the specified directory. For example (Apache httpd.conf example):
+ <link linkend="ini.open-basedir">open_basedir</link> directory then all
+ file operations will be limited to files under the specified directory
+ For example (Apache httpd.conf example):
<programlisting role="ini">
<![CDATA[
<Directory /docroot>
@@ -59,8 +61,9 @@
</Directory>
]]>
</programlisting>
- If you run the same script.php with this open_basedir setting then this is
- the result:
+ If you run the same script.php with this
+ <link linkend="ini.open-basedir">open_basedir</link> setting
+ then this is the result:
<screen>
<![CDATA[
Warning: open_basedir restriction in effect. File is in wrong directory in
@@ -86,15 +89,15 @@
</para>
<sect1 id="features.safe-mode.functions">
- <title>Functions restricted/disabled by Safe Mode</title>
+ <title>Functions restricted/disabled by safe mode</title>
<para>
This is a still probably incomplete and possibly incorrect listing
of the functions limited by
- <link linkend="features.safe-mode">Safe Mode</link>.
+ <link linkend="features.safe-mode">safe mode</link>.
<!-- TODO: add ¬e.sm.*; to the functions mentioned here.
That entity should link to this section -->
<table>
- <title>Safe Mode limited functions</title>
+ <title>Safe mode limited functions</title>
<tgroup cols="2">
<thead>
<row>
@@ -125,17 +128,17 @@
</row>
<row>
<entry><function>ifx_*</function></entry>
- <entry>sql_safe_mode restrictions, (!= Safe Mode)</entry>
+ <entry>sql_safe_mode restrictions, (!= safe mode)</entry>
<!-- TODO: more info on sql-safe-mode -->
</row>
<row>
<entry><function>ingres_*</function></entry>
- <entry>sql_safe_mode restrictions, (!= Safe Mode)</entry>
+ <entry>sql_safe_mode restrictions, (!= safe mode)</entry>
<!-- TODO: more info on sql-safe-mode -->
</row>
<row>
<entry><function>mysql_*</function></entry>
- <entry>sql_safe_mode restrictions, (!= Safe Mode)</entry>
+ <entry>sql_safe_mode restrictions, (!= safe mode)</entry>
<!-- TODO: more info on sql-safe-mode -->
</row>
<row>
@@ -259,7 +262,7 @@
</row>
<row>
<entry><function>getallheaders</function></entry>
- <entry>In Safe Mode, headers beginning with 'authorization'
+ <entry>In safe mode, headers beginning with 'authorization'
(case-insensitive)
will not be returned. Warning: this is broken with the aol-server
implementation of <function>getallheaders</function>!</entry>