[BlueOnyx:16195] Re: BlueOnyx-5208R-SL-6.5-20140824 pear error
Michael Stauber
mstauber at blueonyx.it
Wed Oct 15 13:58:00 -05 2014
Hi Simone,
> so i have copied the php.ini to php-cli.ini and removed the last lines
> with open_basedir setting
>
> Any comment? is it safe?
Sounds good enough to me. For installing Pear that should do fine.
The open_basedir stuff is there to prevent that scripts from siteX can
access scripts from siteY. A malicious siteAdmin could otherwise upload
a PHP script to access data from other people.
This is especially needed if some of your sites just have "PHP" enabled.
If suPHP is enabled, then the mechanisms in suPHP prevent this anyway,
as a suPHP script can only access files that have the same owner as the
originating script.
--
With best regards
Michael Stauber
More information about the Blueonyx
mailing list