file for this line:
allow_url_fopen = On
and turn it 'Off'.
Most applications don't need this URL parsing, and you should turn it on
specifically for those that do, rather than leaving it on as a
default.
--
Anil Madhavapeddy, <[EMAIL PROTECTED]>
troducing the buffer overflow.
>
Attached is a patch against php-4.0.4pl1 (backported from php-cvs), which cures
the problem without imposing 80-character limits or using static buffers.
Just committed it to the OpenBSD-current port of PHP4. Thanks [EMAIL PROTECTED]
for testing under Linux.
--
Anil
