|
|
php.net | support | documentation | report a bug | advanced search | search howto | statistics | random bug | login |
PatchesPull RequestsHistoryAllCommentsChangesGit/SVN commits
[2001-05-19 18:53 UTC] rasmus@php.net
|
|||||||||||||||||||||||||||
Copyright © 2001-2025 The PHP GroupAll rights reserved. |
Last updated: Sun Jan 05 02:01:28 2025 UTC |
It appears that the copy function is not affected by the security restrictions set on the php.ini file PHP.ini: Safe_mode=On Open_basedir=d:\www\htdocs With a script like: print('<font color=#007700>Try to copy() c:\winnt\win.ini to d:\www\htdocs\phptest</tr></font><br>'); if (!copy('c:\winnt\win.ini', 'd:\www\htdocs\phptest\win.ini')) { print('<font color=#007700><b>OK</b>: Copy() Failed</font>'); } else { print('<font color=#DD0000><b>Warning</b>: Copy() Succeeded!!!</font>'); } print('<br>=====================================================<br>'); print('<font color=#007700>Try to fopen() file d:\www\htdocs\phptest\win.ini</font><br>'); if (!fopen( 'd:\www\htdocs\phptest\win.ini', 'r' )) { print('<font color=#007700><b>OK</b>: Fopen() Failed</font>'); } else { print('<font color=#DD0000><b>Warning</b>: Fopen() Succeeded!!!</font>'); } I can copy a file from a forbiden directory to an allowed one and the read it. Other functions that I have tested don't have this "bug". I tested with Apache for Windows 1.3.14 and the PHP4 module Best regards, Victor Fernandes