php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #32388 specifing open_basedir or doc_root enables safe_mode even safe_mode is disabled
Submitted: 2005-03-21 02:18 UTC Modified: 2005-03-21 06:57 UTC
From: carlos-spam at wfmh dot org dot pl Assigned:
Status: Not a bug Package: Apache related
PHP Version: 4.3.10 OS: Debian
Private report: No CVE-ID: None
View Developer Edit
Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.
Password:
Status:
Package:
Bug Type:
Summary:
From: carlos-spam at wfmh dot org dot pl
New email:
PHP Version: OS:

 

 [2005-03-21 02:18 UTC] carlos-spam at wfmh dot org dot pl 
Description:
------------
Use of open_basedir or doc_root in vhost (apache 1) as shown below:

php_admin_value open_basedir /
php_admin_value doc_root /
php_admin_flag safe_mode off

enables safe_mode, even safe_mode is set to off, whcih spits out:

Warning: main(): open_basedir restriction in effect. File(.//prepend.php) is not within the allowed path(s): (/) in <my-path> on line 18

Warning: main(prepend.php): failed to open stream: Operation not permitted in <my-path> on line 18

The above used to work with 4.3.4 but stopped after upgrade t 4.3.10-9 (debian package)

Actual result:
--------------
open_basedir, doc_root shall have no effect unless safe_mode is enabled

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2005-03-21 06:57 UTC] tony2001@php.net 
Thank you for taking the time to write to us, but this is not
a bug. Please double-check the documentation available at
http://www.php.net/manual/ and the instructions on how to report
a bug at http://bugs.php.net/how-to-report.php
 
PHP Copyright © 2001-2025 The PHP Group
All rights reserved. 		Last updated: Fri May 09 13:01:28 2025 UTC