News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHP Security Blog:
Open_basedir confusion
February 15, 2007 @ 07:42:00

Stefan Esser is trying to clear up some confusion in a new post to the PHP Security Blog today about his stand on enabling open_basedir on your PHP installation.

From time to time I get the question why I recommend enabling open_basedir and on the other hand call it a solution flawed by design. This is actually a good question, because the untrained PHP user might get a little bit confused about this and might believe that I change my opinion on a daily basis.

He talks about his reasoning - how it does it's job protecting PHP developers from being able to get to those file, but how it's also flawed with issues due to some 3rd party libraries that have their own problems.

0 comments voice your opinion now!
openbasedir confusion useful flawed thirdparty library openbasedir confusion useful flawed thirdparty library


blog comments powered by Disqus

Similar Posts

CodeForest.net: Android JSON-RPC client and PHP Zend Framework server

PHPMaster.com: Charting with pChart

Rich Zygler's Blog: People work with WS-* web services in PHP? Why?

Ed Finkler's Blog: Inspekt Project funded by OWASP

Felix Geisendorfer's Blog: Test Driven Development in Real World Apps


Community Events





Don't see your event here?
Let us know!


tips series podcast laravel list framework install introduction symfony update community deployment zendserver opinion api package library release interview language

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework