php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Request #63534 new php.ini flag disable_remote_download
Submitted: 2012-11-15 21:50 UTC Modified: 2021-07-06 16:13 UTC
Votes:10
Avg. Score:2.4 ± 1.6
Reproduced:2 of 6 (33.3%)
Same Version:1 (50.0%)
Same OS:0 (0.0%)
From: thbley at gmail dot com Assigned:
Status: Suspended Package: *Configuration Issues
PHP Version: 5.5.0alpha1 OS: any
Private report: No CVE-ID: None
Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.
Password:
Status:
Package:
Bug Type:
Summary:
From: thbley at gmail dot com
New email:
PHP Version: OS:

 

 [2012-11-15 21:50 UTC] thbley at gmail dot com
Description:
------------
Disable downloading content only from remote computers:

disable_remote_download = On|Off
(default: On?)

disable_remote_download = On forbids fopen("http://www.php.net/", "r"); or fopen("http://69.147.83.199/", "r"); or the IPv6 equivalent

disable_remote_download = On allows fopen("http://localhost/", "r"); or fopen("http://127.0.0.1/", "r"); or the IPv6 equivalent

affects: url-fopen-wrappers, (p)fsockopen, socket_bind, curl extension, imap extension, others?


Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2021-07-06 16:13 UTC] cmb@php.net
-Status: Open +Status: Suspended
 [2021-07-06 16:13 UTC] cmb@php.net
This is rather general, and since it is supposed to affect
extensions (possibly even external extensions), this needs
discussion and an RFC[1].  For the time being, I suspend this
ticket.

[1] <https://wiki.php.net/rfc/howto>
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Tue Nov 05 18:01:30 2024 UTC