I can't seem to get safe_mode working the way I need it to. I'm trying to allow users to include PEAR from their local webspace without disabling safe_mode. The docs tell me to simply use the safe_mode_include_dir directive, but php does not seem to be using it. Here's my config, set up in httpd.conf:
<Directory ~ "/*/WWW">
AllowOverride FileInfo Indexes AuthConfig Limit
Options MultiViews +Indexes -FollowSymLinks +SymLinksIfOwnerMatch +ExecCGI +IncludesNoExec
<Limit GET POST OPTIONS PROPFIND>
Order allow,deny
Allow from all
</Limit>
<Limit PUT DELETE PATCH PROPPATCH MKCOL COPY MOVE LOCK UNLOCK>
Order deny,allow
Deny from all
</Limit>
php_admin_flag safe_mode On
php_value include_path ".:/pkgs/php-4.2.3/share/pear"
php_admin_value safe_mode_exec_dir "/pkgs/www/cgi-bin/"
php_admin_value safe_mode_include_dir ".:/pkgs/php-4.2.3/share/pear"
php_admin_value doc_root "."
php_admin_value user_dir WWW
php_admin_flag engine On
php_value max_execution_time 90
</Directory>
Currently, this setup throws "SAFE MODE Restriction in effect" errors when I try to include /pkgs/php-4.2.3/share/pear. Includes work when I turn safe_mode off. Anyone see what I'm doing wrong or what I should be doing differently?
Peter
-- Peter Torraca Webmaster, Math Department Purdue Univ., Math 813 765-494-9998
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
