hi, On Tue, Feb 17, 2009 at 02:02:35AM -0500, Eric Stewart wrote: > 14. A few other directives have been question but I don't have enough > experience with these particular settings so please weight in on them. > > extension_dir = "./" > enable_dl = On
i'd be incredibly weary of this setting, even in a development environment.
- if you have enable_dl on, a user can load an arbitrary .so into php's (and
thus most often apache's) memory space.
- if you have extension_dir = "./", then even open_basedir and similar
built-in restrictions about the path of dl()'d .so extensions are no
longer in effect, and the floodgates are opened for various types of
external attacks.
the biggest reason that this is problematic is that in the case of
apache, you have raw access to all of apache's memory, including ssl keys,
stored passwords, etc, which typically a php script will not have.
sean
signature.asc
Description: Digital signature
