Patch is necessary :-)))
Rui Hirokawa wrote:
I checked this problem again, and I found getallheaders() can have "authorization" even if safe_mode is "On". So, $_SERVER['PHP_AUTH_DIGEST'] in my patch is not necessary to use with PEAR::Auth_HTTP and Apache. I am not sure it is useful or not with another SAPI such as ISAPI.
Rui
-- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
