[BlueOnyx:00452] Re: Squirrelmail and Impending Cranial Hemmoraging
Gerald Waugh
gwaugh at frontstreetnetworks.com
Thu Feb 5 15:22:25 -05 2009
Jeff Mutschler wrote;
>
> Hiya Gerald,
> All up-to-date, last update was:
>
> Jan 24 06:00:27 Updated: squirrelmail - 1.4.8-5.el5.centos.3.noarch
>
> I've rebooted since then as well...
>
> Your bloody valentine,
>
I see these errors in my test attempt;
[Thu Feb 05 14:12:24 2009] [error] [client 192.168.1.100] PHP Warning:
escapeshellcmd() has been disabled for security reasons in
/usr/share/squirrelmail/class/deliver/Deliver_SendMail.class.php on line
98, referer: http://192.168.1.120/webmail/src/compose.php
[Thu Feb 05 14:12:24 2009] [error] [client 192.168.1.100] PHP Warning:
popen() has been disabled for security reasons in
/usr/share/squirrelmail/class/deliver/Deliver_SendMail.class.php on line
98, referer: http://192.168.1.120/webmail/src/compose.php
So looks like php.ini needs changes;
escapeshellcmd
popen
In /etc/php.ini
Change the lines, note I copied, hashed out originak and inserted new
# disable_functions =
exec,system,passthru,shell_exec,popen,escapeshellcmd,proc_open,proc_nice
,ini_restore
disable_functions =
exec,system,passthru,shell_exec,proc_open,proc_nice,ini_restore
Gerald
More information about the Blueonyx
mailing list