Re: Allowing [SAPI=] entries in ini files.

From:	Michael Wallner	Date:	Wed, 20 Nov 2013 09:58:14 +0000
Subject:	Re: Allowing [SAPI=] entries in ini files.
References:	1 2	Groups:	php.internals
Request:	Send a blank email to internals+get-70219@lists.php.net to get a copy of this message

On 19 November 2013 19:51, Sebastian Krebs <krebs.seb@gmail.com> wrote:

> Just my 2 cents, but that sounds more like an issue with your
> provider/hoster and not with PHP. I always thought of the additional
> php.ini as a way to change some details and not a way to set up the whole
> runtime. Especially when a user has write access to that file it seems to
> me also an security issue, when PHP allows to set/change critical settings
> there.

You totally miss the point, Sebastian. As Richard already explained in
his example, he as access to the ini-scan-dir, so he could set
whatever setting he wants, just not SAPI-specific, but for all SAPIs.


-- 
Regards,
Mike


   

Thread (16 messages)

• Richard QuadlingSat, 16 Nov 2013 11:54:11 +0000
  • Richard QuadlingTue, 19 Nov 2013 14:55:07 +0000Re: Allowing [SAPI=] entries in ini files.
  • Sebastian KrebsTue, 19 Nov 2013 18:51:30 +0000
    • Richard QuadlingWed, 20 Nov 2013 09:38:46 +0000
    • Michael WallnerWed, 20 Nov 2013 09:58:14 +0000
      • Sebastian KrebsWed, 20 Nov 2013 10:06:22 +0000
        • Pierre JoyeWed, 20 Nov 2013 10:22:08 +0000
  • Alexey ZakhlestinWed, 20 Nov 2013 09:51:59 +0000
    • Richard QuadlingWed, 20 Nov 2013 11:46:55 +0000
  • Remi ColletMon, 25 Nov 2013 15:55:31 +0000
  • Johannes SchlüterMon, 25 Nov 2013 16:10:57 +0000
    • Remi ColletMon, 25 Nov 2013 16:37:41 +0000
      • Richard QuadlingMon, 25 Nov 2013 16:39:55 +0000
      • Johannes SchlüterMon, 25 Nov 2013 17:52:10 +0000
        • Bostjan SkufcaMon, 25 Nov 2013 21:48:19 +0000
    • Richard QuadlingMon, 25 Nov 2013 16:39:06 +0000