ID: 24604
Comment by: real763 at uni dot de
Reported By: timo dot hummel at 4fb dot de
Status: Open
Bug Type: Documentation problem
Operating System: SuSE Linux 8.2 Linux 2.4.19
PHP Version: Irrelevant
New Comment:
uhm thats not great
ftp doenst work , and CGI is not running, too :(
Warning: ftp_connect() [function.ftp-connect]:
php_network_getaddresses: getaddrinfo failed: Name or service not known
in /home/www/htdocs/myhost.com/bla.php on line 382
@develop: plz upgrade SAFE_MODE : - )
Previous Comments:
------------------------------------------------------------------------
[2004-03-01 02:31:19] timo dot hummel at 4fb dot de
>It makes no sense to let users create
> a dir and not let them write to it.
Well, that's another thing. It's probably about the umask, however,
most providers and/or distribution builders should take care of this,
but aren't.
------------------------------------------------------------------------
[2004-03-01 02:24:04] soenke at regelt dot com
safe_mode_gid should be a workaround for this.
@Developers: Please let us know your plans about this issue.
--
Soenke
------------------------------------------------------------------------
[2004-01-29 18:26:33] rlammers at angelfire dot com
The simplest way to let users do anything on my website is by creating
a subdir for them to separate their actions from others.
Now my webhost has turned safe_mode on and the only work-around is to
let the ftp-pasword lying around in a script file. Nice security that
is!.
Please fix this (imho major) bug. It makes no sense to let users create
a dir and not let them write to it.
------------------------------------------------------------------------
[2004-01-21 05:52:41] thorsten at rinne dot info
Hi,
using PHP as CGI with suPHP (www.suphp.org) there are no problems:
-rw-r--r-- 1 thorsten users 195 Jan 20 22:01 test.php
Then running test.php...
Result:
drwxr-xr-x 2 thorsten users 4096 Jan 20 22:03 test
-rw-r--r-- 1 thorsten users 195 Jan 20 22:01 test.php
It would be nice if this would work with mod_php!
bye
Thorsten
------------------------------------------------------------------------
[2003-12-28 06:32:42] s9608273 at student dot utwente dot nl
Dir 20031228122842 made with function mkdir() (uid/gid : 101:100)
This is the effect when moving uploaded file to this dir.
Warning: move_uploaded_file(): SAFE MODE Restriction in effect. The
script whose uid/gid is 507/507 is not allowed to access
/home/..../uploadedFiles/20031228122842 owned by uid/gid 101/100 in
...
Maybe all file operations can be performed as the user which owns the
script.
------------------------------------------------------------------------
The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
http://bugs.php.net/24604
--
Edit this bug report at http://bugs.php.net/?id=24604&edit=1
