PHP :: Request #63534 :: new php.ini flag disable_remote

new php.ini flag disable_remote_download

Submitted:

2012-11-15 21:50 UTC

Modified:

2021-07-06 16:13 UTC

Votes:	10
Avg. Score:	2.4 ± 1.6
Reproduced:	2 of 6 (33.3%)
Same Version:	1 (50.0%)
Same OS:	0 (0.0%)

From:

thbley at gmail dot com

Assigned:

Status:

Suspended

Package:

*Configuration Issues

PHP Version:

5.5.0alpha1

OS:

any

Private report:

CVE-ID:

None

View Developer Edit

Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.

Password:

Status:
Package:
Bug Type:
Summary:
From:	thbley at gmail dot com
New email:
PHP Version:		OS:

New Comment:

[2012-11-15 21:50 UTC] thbley at gmail dot com

Description:
------------
Disable downloading content only from remote computers:

disable_remote_download = On|Off
(default: On?)

disable_remote_download = On forbids fopen("http://www.php.net/", "r"); or fopen("http://69.147.83.199/", "r"); or the IPv6 equivalent

disable_remote_download = On allows fopen("http://localhost/", "r"); or fopen("http://127.0.0.1/", "r"); or the IPv6 equivalent

affects: url-fopen-wrappers, (p)fsockopen, socket_bind, curl extension, imap extension, others?

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports

[2021-07-06 16:13 UTC] cmb@php.net

-Status: Open +Status: Suspended

[2021-07-06 16:13 UTC] cmb@php.net

This is rather general, and since it is supposed to affect
extensions (possibly even external extensions), this needs
discussion and an RFC[1].  For the time being, I suspend this
ticket.

[1] <https://wiki.php.net/rfc/howto>

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Sat Dec 21 15:01:29 2024 UTC