Re: [PHP] Safe mode story

On May 11, 2008, at 12:06 AM, admin wrote: [snip!] Safe mode has _got_ to be there for some good reason. Read on about PHP6 Scroll down to where the title is "Things removed" - notice that

RE: [PHP] Safe mode story

You could try having apache run as the UID of the user. With a few modifications to apache site config and you should be golden! HTH, Wolf -Original Message- From: admin <[EMAIL PROTECTED]> Sent: Sunday, May 11, 2008 1:06 AM To: php-general@lists.php.net Subject: [PHP] Safe mode story

Re: [PHP] safe mode question

Your php.ini should have root as its owner and be set to 600, if your using apache server then apache must start as root, the php.ini file is read only once by root when the server starts - so that setting should not cause problems, however if using the cli then you should also make /etc/php.in

Re: [PHP] safe mode question

Doh - I figured it out (for those who were interested). The permissions on /etc/php.ini was set to 600 (owner == root). Changing this it other read, fixes the issue. Any idea why Suse would do this? Thanks -robin -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http:

Re: [PHP] Safe mode subdirectory workaround patch

Bostjan Skufca wrote: Hi everyone, I created a patch which enables subdirectories to be created and used even if PHP is running with safe mode enabled (common problem on shared hosts where Apache/PHP runs as user 'nobody' or 'www'). Patch can be found here: http://www.lenivec.com/php/patches/

RE: [PHP] safe mode

> -Original Message- > From: Bostjan Skufca @ domenca.com [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 28, 2005 1:38 PM > > > I would *never* host anything on a server with safe_mode on! > > What are your reasons for this decision? I correted it in a mail 5 minutes after. With safe_

Re: [PHP] safe mode

> > -Original Message- > > From: Kim Madsen [mailto:[EMAIL PROTECTED] > > Sent: Thursday, July 28, 2005 12:01 PM > > > > I would *never* host anything on a server with safe_mode on! What are your reasons for this decision? regards, Bostjan -- PHP General Mailing List (http://www.php.ne

RE: [PHP] safe mode

Hey Kim, > I would *never* host anything on a server with safe_mode on! Just 1 day late :-( just bought hosting for a year with b-one.se :-( Whats the main reasons you would never host with safe mode on? and whats this: s/safe_mode on/safe_mode off/ ?? Thanks, Ryan -- PHP General Mailing

RE: [PHP] safe mode

Ahem! > -Original Message- > From: Kim Madsen [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 28, 2005 12:01 PM > I would *never* host anything on a server with safe_mode on! s/safe_mode on/safe_mode off/ /Kim -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: ht

RE: [PHP] safe mode

> -Original Message- > From: Ryan A [mailto:[EMAIL PROTECTED] > Sent: Tuesday, July 26, 2005 6:29 PM > I presently require hosting with a company that has their servers in > Sweden, > and I need a shared hosting account, > any recommendations are welcome, the server is for a client. > >

RE: [PHP] SAFE MODE Restriction - mkdir()

This answer from Mike solved this (e.g. create a CGI process for this task): [...] So, yes, you can create a directory which it is then impossible to access -- this is an unfortunate side-effect of safe mode when PHP runs as an Apache module and hence as the Apache user. This is why hosted serv

Re: [PHP] SAFE MODE Restriction - mkdir()

SED wrote: It just seems not making sence. I have read the manual and it does not explain this specially. If the user owns this folder: "www\myfolders" And runs a PHP-script in safe mode that creates the folder "www\myfolders\who". Who owns the "who" folder? If the webserver is run under user nobod

RE: [PHP] SAFE MODE Restriction - mkdir()

To view the terms under which this email is distributed, please go to http://disclaimer.leedsmet.ac.uk/email.htm On 25 November 2004 00:47, SED wrote: > Then, shouldn't the owner be able to handle the new directory? > > In my case, the owner creates the directory X but can't create a > subdir

Re: [PHP] SAFE MODE Restriction - mkdir()

Hi, I have faced the same problem after the upgrade my server from php 4.2.2 to php 5.0.2. I tested mkdir() in both in safe_mode on and off. I have posted this to php-bug. yours, Michael -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] SAFE MODE Restriction - mkdir()

time. Regards, Summi -Original Message- From: Michael Leung [mailto:[EMAIL PROTECTED] Sent: 25. nóvember 2004 03:21 To: SED Cc: [EMAIL PROTECTED] Subject: Re: [PHP] SAFE MODE Restriction - mkdir() Hi sed, which version of PHP you using? may not be just Safe Mode. is it the script wo

Re: [PHP] SAFE MODE Restriction - mkdir()

Hi sed, which version of PHP you using? may not be just Safe Mode. is it the script working well before the safe mode is on? yours, Michael -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] SAFE MODE Restriction - mkdir()

user different from the user of the PHP process? Regards, Summi -Original Message- From: Marek Kilimajer [mailto:[EMAIL PROTECTED] Sent: 25. nóvember 2004 01:13 To: SED Cc: [EMAIL PROTECTED] Subject: Re: [PHP] SAFE MODE Restriction - mkdir() SED wrote: > Then, shouldn't the owne

Re: [PHP] SAFE MODE Restriction - mkdir()

rds, Summi -Original Message- From: Marek Kilimajer [mailto:[EMAIL PROTECTED] Sent: 25. nóvember 2004 00:05 To: SED Cc: [EMAIL PROTECTED] Subject: Re: [PHP] SAFE MODE Restriction - mkdir() SED wrote: Hi, I have very wierd situation. The ISP is running in SAFE MODE. I use PHP to create a directory

RE: [PHP] SAFE MODE Restriction - mkdir()

ype of the function? Regards, Summi -Original Message- From: Marek Kilimajer [mailto:[EMAIL PROTECTED] Sent: 25. nóvember 2004 00:05 To: SED Cc: [EMAIL PROTECTED] Subject: Re: [PHP] SAFE MODE Restriction - mkdir() SED wrote: > Hi, > > I have very wierd situation. The ISP is r

Re: [PHP] SAFE MODE Restriction - mkdir()

SED wrote: Hi, I have very wierd situation. The ISP is running in SAFE MODE. I use PHP to create a directory with mkdir("something", 0777), it works great! However, if I try to create a sub-directory (e.g. "something2") in the "something" directory, I get the following: Warning: SAFE MODE Restricti

Re: [PHP] Safe mode & imagecreatefromjpeg

Paulo JF Silva wrote: Hi, I have PHP 4.3.5 and safe mode on. When I create a new image with imagecreatefromjpeg(), the image owner is 'httpd' and not my ftp user. [this is in a shared host]. I would like to know if there is any way to create the image with my user... I can workaround mkdir & st

Re: [PHP] Safe mode & imagecreatefromjpeg

* Thus wrote Paulo JF Silva: > Hi, > > I have PHP 4.3.5 and safe mode on. When I create a new image with > imagecreatefromjpeg(), the image owner is 'httpd' and not my ftp user. > [this is in a shared host]. > > I would like to know if there is any way to create the image with my > user... I c

Re: [PHP] safe mode?

blackwater dev wrote: so do this each time? I need a routine that will dynamically create a folder, then use that folder to upload images. This problem doesn't exists just on one directory but on all directories dynamically created. I mean PHP ftp functions. http://www.php.net/ftp Thanks! On Wed,

Re: [PHP] safe mode?

so do this each time? I need a routine that will dynamically create a folder, then use that folder to upload images. This problem doesn't exists just on one directory but on all directories dynamically created. Thanks! On Wed, 29 Sep 2004 21:48:05 +0200, Marek Kilimajer <[EMAIL PROTECTED]> wro

Re: [PHP] safe mode?

blackwater dev wrote: Hello all... I finally have an upload script partly working but am not running into this problem. I have this code which executes when the user visits the image upload page: if (!file_exists("../images/property_$id")){ mkdir("../images/property_$id", 0700);} $upload_dir =

Re: [PHP] safe mode/open basedir not working ?

Ok. It did not worked. I had to create an empy dir. Well, one problem. Since I have users with ftp access and they host php scripts that handle "file uploads". The files are created with apache.apache and are usually moved to the user's directory using move_uploaded_file. Since the owner/gorup

Re: [PHP] safe mode/open basedir not working ?

That *may* not work as it's a file, not a folder. You're welcome to try, though. :-) On Fri, 2 Jul 2004 14:19:25 -0400, robert mena <[EMAIL PROTECTED]> wrote: > > Ok. How about set the safe_mode_exec_dir to /dev/null then ? > > > On Wed, 30 Jun 2004 21:55:17 -0700, Justin Patrin <[EMAIL PROTECT

Re: [PHP] safe mode/open basedir not working ?

Ok. How about set the safe_mode_exec_dir to /dev/null then ? On Wed, 30 Jun 2004 21:55:17 -0700, Justin Patrin <[EMAIL PROTECTED]> wrote: > > YES. You need to set the safe_mode_exec_dir path to be some path > without binaries. Such as: /etc, although that's a bad example. Make a > directory with

Re: [PHP] safe mode/open basedir not working ?

YES. You need to set the safe_mode_exec_dir path to be some path without binaries. Such as: /etc, although that's a bad example. Make a directory with only root write access and point that config option to it. On Wed, 30 Jun 2004 22:31:27 -0400, robert mena <[EMAIL PROTECTED]> wrote: > > Marek, J

Re: [PHP] safe mode/open basedir not working ?

Marek, Justin, am I doing something wrong with the setup because I saw the logs and a redeye.php was used to system("perl -") and was not supposed to. On Thu, 01 Jul 2004 00:32:07 +0200, Marek Kilimajer <[EMAIL PROTECTED]> wrote: > > Justin Patrin wrote --- napísal:: > > On Wed, 30 Jun 2004

Re: [PHP] safe mode/open basedir not working ?

Justin Patrin wrote --- napísal:: On Wed, 30 Jun 2004 23:50:02 +0200, Marek Kilimajer <[EMAIL PROTECTED]> wrote: robert mena wrote --- napísal:: Hi, I host a few virtual domains in apache 2 and use php. The virtual domain is something like ServerAdmin [EMAIL PROTECTED] DocumentRoot /

Re: [PHP] safe mode/open basedir not working ?

robert mena wrote --- napísal:: Marek, but the program was executed using a system call from a php script. - rt And that's what I mean. Every fopen call (almost) in the php binary is wrapped around the safe mode checks. But once you leave the php binary, or even load a php module that does not us

Re: [PHP] safe mode/open basedir not working ?

Thats just what he said :p Robert Mena wrote: Marek, but the program was executed using a system call from a php script. - rt On Wed, 30 Jun 2004 23:50:02 +0200, Marek Kilimajer <[EMAIL PROTECTED]> wrote: robert mena wrote --- napísal:: Hi, I host a few virtual domains in apache 2 and use php. The

Re: [PHP] safe mode/open basedir not working ?

On Wed, 30 Jun 2004 23:50:02 +0200, Marek Kilimajer <[EMAIL PROTECTED]> wrote: > > robert mena wrote --- napísal:: > > Hi, > > > > I host a few virtual domains in apache 2 and use php. > > > > The virtual domain is something like > > > > > > ServerAdmin [EMAIL PROTECTED] > > Docum

Re: [PHP] safe mode/open basedir not working ?

Marek, but the program was executed using a system call from a php script. - rt On Wed, 30 Jun 2004 23:50:02 +0200, Marek Kilimajer <[EMAIL PROTECTED]> wrote: > > robert mena wrote --- napísal:: > > > Hi, > > > > I host a few virtual domains in apache 2 and use php. > > > > The virtual domain

Re: [PHP] safe mode/open basedir not working ?

robert mena wrote --- napísal:: Hi, I host a few virtual domains in apache 2 and use php. The virtual domain is something like ServerAdmin [EMAIL PROTECTED] DocumentRoot /home/httpd/html/domain.com ServerName www.domain.com ErrorLog logs/domain.com-error_log

Re: [PHP] Safe mode effect

Ravi kumar wrote: HI, goole.com found so many details about safe mode too much to understand. My hosting provider set php safe mode = enable . so iam unable to use so many scripts . can any one give good free image gallery software which will work under safe mode = enable . is it true that wi

Re: [PHP] Safe Mode

According the safe-mode page http://us4.php.net/features.safe-mode in http.conf : php_admin_value open_basedir /docroot # In your case safe_mode_include_dir Can "php_admin_value" be inlcuding in the *.php pages and/or .htaccess. manual > ini_set() It would seem form the ini_set() comments

Re: [PHP] Safe Mode

On Monday 23 February 2004 00:55, [EMAIL PROTECTED] wrote: > >>> Can safe mode be turned off in the .htaccess file? [snip] > According the safe-mode page http://us4.php.net/features.safe-mode in > http.conf : > >php_admin_value open_basedir /docroot > # In your case safe_mode_include_dir >

Re: [PHP] Safe Mode

Can safe mode be turned off in the .htaccess file? I don't know the gallery script but setting safe_mode_include_dir should help. Ask the admin to set it to your directory for your virtual host. Another option would be to use ftp functions to upload the images to your directory, but you would

Re: [PHP] Safe Mode

Lucas Gonze wrote: On Saturday, Feb 21, 2004, at 20:17 America/New_York, [EMAIL PROTECTED] wrote: Lucas Gonze wrote: On Saturday, Feb 21, 2004, at 09:18 America/New_York, [EMAIL PROTECTED] wrote: Is it possible to set Apache in such a way that everyting is run under safe-mode, except for a di

Re: [PHP] Safe Mode

On Saturday, Feb 21, 2004, at 20:17 America/New_York, [EMAIL PROTECTED] wrote: Lucas Gonze wrote: On Saturday, Feb 21, 2004, at 09:18 America/New_York, [EMAIL PROTECTED] wrote: Is it possible to set Apache in such a way that everyting is run under safe-mode, except for a directory and everythin

Re: [PHP] Safe Mode

Lucas Gonze wrote: On Saturday, Feb 21, 2004, at 09:18 America/New_York, [EMAIL PROTECTED] wrote: Is it possible to set Apache in such a way that everyting is run under safe-mode, except for a directory and everything underneath in a virtual domain? Very likely yes, if your admin permits it.

Re: [PHP] Safe Mode

On Saturday, Feb 21, 2004, at 09:18 America/New_York, [EMAIL PROTECTED] wrote: Is it possible to set Apache in such a way that everyting is run under safe-mode, except for a directory and everything underneath in a virtual domain? Very likely yes, if your admin permits it. The place to look for

Re: [PHP] safe mode and mail

Hello, This is a reply to an e-mail that you wrote on Fri, 20 Jun 2003 at 01:40, lines prefixed by '>' were originally written by you. > Hi, > safe mode on and mass mailing wished. I know that it's not possible to > set > the time limit, when safe mode is on. Sure mass mailing using mail > functi

RE: [PHP] SAFE MODE Restriction in effect

Changed it to dir but not made any difference. I have root access to the server so could change php.ini. However ; Safe Mode ; safe_mode = Off ; By default, Safe Mode does a UID compare check when ; opening files. If you want to relax this to a GID compare, ; then turn on safe_mode_gid. safe_mo

RE: [PHP] SAFE MODE Restriction in effect

$dp = opendir( $currdir ); Basically it seems like I need to turn 'SAFE MODE' off but I dont really know what it it or how to turn it off. In fact I am not sure where the config file is on a *nix box or what is it called. Ben At 15:58 09/06/2003 +0200, winst0n wrote: what does the line

Re: [PHP] safe mode problem

itself which created the page. -Original Message- From: Marek Kilimajer [mailto:[EMAIL PROTECTED]] Sent: Monday, February 03, 2003 12:39 PM To: Gurvinder Singh Cc: [EMAIL PROTECTED] Subject: Re: [PHP] safe mode problem what you did should work (you must be root to change owner). You can

RE: [PHP] safe mode problem

and how can i be root from a php script? i want chown from the script itself which created the page. -Original Message- From: Marek Kilimajer [mailto:[EMAIL PROTECTED]] Sent: Monday, February 03, 2003 12:39 PM To: Gurvinder Singh Cc: [EMAIL PROTECTED] Subject: Re: [PHP] safe mode problem

Re: [PHP] safe mode problem

At 11:39 3-2-03, you wrote: what you did should work (you must be root to change owner). You can use -R switch to change owner recursively Gurvinder Singh wrote: hi i create a php page dynamically in my php script. this page include one of my other php file. when i run the newly created script

Re: [PHP] safe mode problem

what you did should work (you must be root to change owner). You can use -R switch to change owner recursively Gurvinder Singh wrote: hi i create a php page dynamically in my php script. this page include one of my other php file. when i run the newly created script i get this error Warning: SA

[PHP] Edwin->Re: [PHP] Safe mode?

t;[EMAIL PROTECTED]> Sent: Sunday, September 01, 2002 2:49 PM Subject: Re: [PHP] Safe mode? > Try the "mothership" again and type > > php and "safe mode" > > Click "Search". The first two results: > > http://www.dynamic-webpages.de/php/fe

Re: [PHP] Safe mode?

Try the "mothership" again and type php and "safe mode" Click "Search". The first two results: http://www.dynamic-webpages.de/php/features.safe-mode.php http://info.ccone.at/INFO/PHP4/features.safe-mode.html You can read only ONE so as not to get more confused... :) - E PS Of course, y

Re: [PHP] Safe mode

In article <[EMAIL PROTECTED]>, [EMAIL PROTECTED] (Ashley M. Kirchner) wrote: > Rasmus Lerdorf wrote: > > > You need to use php_admin_flag for safe_mode. > > And I suppose this page has an error on it then: > > http://www.php.net/manual/en/configuration.php > > Since it states ph

Re: [PHP] Safe mode

Rasmus Lerdorf wrote: > You need to use php_admin_flag for safe_mode. And I suppose this page has an error on it then: http://www.php.net/manual/en/configuration.php Since it states php_flag, not php_admin_flag... -- Example 3-2. Apache configuration example php_value inc

Re: [PHP] Safe mode

You need to use php_admin_flag for safe_mode. But I wouldn't expect any effect here since you defaulted it to On and in your httpd.conf you are turning it on... So what are you expecting to see different? -Rasmus On Fri, 26 Apr 2002, Ashley M. Kirchner wrote: > > On our server, PHP's comp

Re: [PHP] Safe Mode

>On Tue, 9 Apr 2002, Richard Lynch wrote: >> So, what's up with this: >> >> PHP /www/herolist.com/web/categories.html: 105 2 SAFE MODE >> Restriction in effect. The script whose uid is 1065 is not allowed >> to access /www/herolist.com/web/pictures/TERISBROTHER1thum.jpg owned >> by uid 1056

Re: [PHP] Safe Mode

On Tue, 9 Apr 2002, Richard Lynch wrote: > So, what's up with this: > > PHP /www/herolist.com/web/categories.html: 105 2 SAFE MODE > Restriction in effect. The script whose uid is 1065 is not allowed > to access /www/herolist.com/web/pictures/TERISBROTHER1thum.jpg owned > by uid 1056 > > Not

Re: [PHP] safe mode and file handling

if you are on a unix system running with apache, you could modify the virtual host block and have apache run as your user name and then change the permissions of the docroot so you are the owner and group. Jim Lucas www.bend.com - Original Message - From: "Mika Lindqvist" <[EMAIL PROTECTE

Re: [PHP] safe mode and file handling

The easiest way to make this work is to use open_basedir settings instead of safe_mode. Safe_mode is specifically created to prevent you from doing what you are trying to do. -Rasmus On Fri, 1 Mar 2002, Mika Lindqvist wrote: > I and my www space provider have fought with a problem. All > files

Re: [PHP] Safe mode/restricted directory file system operations

On Thu, 2002-02-21 at 10:44, Dave wrote: > Apache server with PHP module > Apache user is nobody:nobody > Virtual user is user1:user1 [snip] > Ideas or suggestions appreciated. > > Dave Well, this isn't really a PHP issue, but what the hell. If you need to do filesystem stuff as a certain user

Re: [PHP] Safe mode and dir permissions

Hello, You can't change permissions in safe_mode. >and for every new people > inserted the system creates a Directorie and will upload things Maybe you give the new people something like a autonumbered userid. So you can created the dirs /userid0/, /userid1/ etc. already by hand. - Origi

Re: [PHP] Safe mode + /usr/share/php

A recent feature addition (4.0.7) is a safe_mode_include_dir php.ini directive where you can do exactly this. -Rasmus On Sun, 26 Aug 2001, Artyom Plouzhnikoff wrote: > Is it possible to use safe mode yet allow all scripts to include any files > from /usr/share/php? Normal users ain't gonna ha

Re: [PHP] Safe mode upload

Awhile ago there was some discussion on irc #php , this use was proposed (by onki) : $tmp_name = $HTTP_POST_FILES['userfile']['tmp_name']; move_uploaded_file ($tmp_name, '/home/httpd/html/upload/example.zip'); chmod('/home/httpd/html/upload/example.zip', 0644); And it works. move_upl

RE: [PHP] Safe mode?

I think the second line is right, but I suggest to add space before and after equal sign, if it is not working may be somethink else make the problem. safe_mode = off -Original Message- From: Leon Mergen [mailto:[EMAIL PROTECTED]] Sent: 03 March, 2001 4:36 AM To: [EMAIL PROTECTED] Subjec

Re: [PHP] safe mode in 4.0.4pl1

suExec() does most of what safe_mode would do, and other things besides... I don't think they are compatible... What exactly is your suExec'ed PHP able to do that you want to not allow? - Original Message - From: Ian Gulliver <[EMAIL PROTECTED]> Newsgroups: php.general Sent: Monday, Ja