Hi,
I'm going to commit the same patch into PHP_5_3 tomorrow.
Thanks. Dmitry.
> -Original Message-
> From: Dmitry Stogov [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, November 06, 2007 10:30 AM
> To: [EMAIL PROTECTED]
> Subject: [ZEND-ENGINE-CVS] cvs: ZendEngine2 / zend_compile.c
> zend_c
Yes, this is what I'm talking about. Now is the time to do this
before some distribution of Linux or whatnot includes a version of PHP 6
that would not have this feature.
I'm sorry I can't code very well in C. But I'd be willing to write
documentation or a migration guide or something. Jus
On Mon, 5 Nov 2007 17:12:03 +, in php.internals [EMAIL PROTECTED]
(Mark Krenz) wrote:
> See what I'm getting at? File ownership checking is just one part of
>safe mode, exec dir restrictions are another major part. If you remove
>this, it will open up a whole can of worms.
It has earlier b
>
> > Unless there is some other way in PHP of restricting where you can run
> > programs from (can't find any),
>
> Why PHP needs to do that ? isnt that part of OS level security ?
There are those of us in shared environments where scripts can't be
run as a single user because the content is ow
On Mon, Nov 05, 2007 at 07:02:05PM GMT, Alexey Zakhlestin [EMAIL PROTECTED]
said the following:
> Did you just ignore the part about fastcgi?
>
No I didn't, I just feel that fastcgi/suexec/mod_suphp doesn't handle
all of the ready to run programs out there completely. Besides that, the
whole po
I participate in development of the "intl" extension that is already in PECL.
My previous work on it has been committed to the CVS by Stanislav Malyshev.
Now I have another large piece of code to commit, and would like to submit
patches for the extension more frequently.
Need access to the follow
Did you just ignore the part about fastcgi?
On 11/5/07, Mark Krenz <[EMAIL PROTECTED]> wrote:
> On Mon, Nov 05, 2007 at 06:35:50PM GMT, Alexey Zakhlestin [EMAIL PROTECTED]
> said the following:
> >
> > That's how textdrive/joyent do this and they are more than happy with
> > this approach.
> >
>
That's obvious and I do offer that. But what about users in a shared
environment? There has to be a way to have cheaper accounts for people
and the way to do that is to put a couple hundred of them on a machine.
It'd be pretty easy to run a copy of Apache for each user on their own
port
That's obvious and I do offer that. But what about users in a shared
environment? There has to be a way to have cheaper accounts for people
and the way to do that is to put a couple hundred of them on a machine.
On Mon, Nov 05, 2007 at 06:42:35PM GMT, Michael McGlothlin [EMAIL PROTECTED]
sai
On Mon, Nov 05, 2007 at 06:35:50PM GMT, Alexey Zakhlestin [EMAIL PROTECTED]
said the following:
>
> That's how textdrive/joyent do this and they are more than happy with
> this approach.
>
Oh really? Read the section on Joyent/Textdrive here:
http://suso.suso.org/xulu/Web_hosting_providers_
Much easier and better to just throw every user their own virtual
machine. They can go wild and you don't have to worry. Makes it easy to
control how much CPU, RAM, and hdd the user is using too.
--
Michael McGlothlin
Southwest Plumbing Supply
--
PHP Internals - PHP Runtime Development Mailing
On Mon, Nov 05, 2007 at 05:28:07PM GMT, Cristian Rodriguez [EMAIL PROTECTED]
said the following:
>
> safe_mode does not really resist any analysis, whoever convinced you
> that it is a good thing does not have a clue.
>
I've done the analysis, so you're saying that I don't have a clue. I
don
On 11/5/07, Mark Krenz <[EMAIL PROTECTED]> wrote:
> Some people say to run Apache in a chroot jail, but I think that's
> unreasonable and a lot of people aren't going to do that or know how to
> do that properly. Besides, am I really going to run 200+ instances of
> Apache? That seems unreasona
For applying patches to PHP-GTK. Anant and Elizabeth would rather me contribute
directly now (tired of committing my patches themselves)
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
2007/11/5, Mark Krenz <[EMAIL PROTECTED]>:
> Unless there is some other way in PHP of restricting where you can run
> programs from (can't find any),
Why PHP needs to do that ? isnt that part of OS level security ?
>this is going to become a major problem.
This is going to **solve** a major p
Well, I'm sorry to wait so long to repond back to this. I picked the
wrong week/month to start this discussion as I didn't have the time to
follow up on it. Now I kinda do.
A lot of good and bad (IMHO) points were raised about PHP security in
this thread. I am concerned about any one of my
I am working with Zoe Slattery & Raghubansh Kumar. I have written phpt
testcases and continue to write more.
Please provide an CVS id so that i can contribute them to php.
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
PHP 6 Bug Database summary - http://bugs.php.net
Num Status Summary (61 total including feature requests)
===[*General Issues]==
26771 Suspended register_tick_funtions crash under threaded webservers
===
Hi.
Last build for V5.3 at Nov 03, 2007 20:30 UTC
The next build says "PHP 5.3 Win32 in please consult /dev/urandom".
What is this really saying?
--
-
Richard Quadling
Zend Certified Engineer : http://zend.com/zce.php?c=ZEND002498&r=213474731
"Standing on the shoulders of some very clever g
PHP 4 Bug Database summary - http://bugs.php.net
Num Status Summary (633 total including feature requests)
===[*Programming Data Structures]=
40496 Assigned Test bug35239.phpt still fails (works in PHP 5)
=
20 matches
Mail list logo
