e9afe5e028
fixes many vulnerabilities http://www.php.net/ChangeLog-5.php#5.2.2 from Lawrence Teo <lteo.openbsd1@calyptix.com>;
187 lines
4.9 KiB
Plaintext
187 lines
4.9 KiB
Plaintext
$OpenBSD: patch-php_ini-recommended,v 1.9 2007/05/11 15:05:15 robert Exp $
|
|
--- php.ini-recommended.orig Thu Dec 21 14:05:27 2006
|
|
+++ php.ini-recommended Sun Apr 1 13:42:42 2007
|
|
@@ -500,10 +500,7 @@ default_mimetype = "text/html"
|
|
;;;;;;;;;;;;;;;;;;;;;;;;;
|
|
|
|
; UNIX: "/path1:/path2"
|
|
-;include_path = ".:/php/includes"
|
|
-;
|
|
-; Windows: "\path1;\path2"
|
|
-;include_path = ".;c:\php\includes"
|
|
+include_path = ".:OPENBSD_INCLUDE_PATH"
|
|
|
|
; The root of the PHP pages, used only if nonempty.
|
|
; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root
|
|
@@ -517,7 +514,7 @@ doc_root =
|
|
user_dir =
|
|
|
|
; Directory in which the loadable extensions (modules) reside.
|
|
-extension_dir = "./"
|
|
+extension_dir = "MODULES_DIR"
|
|
|
|
; Whether or not to enable the dl() function. The dl() function does NOT work
|
|
; properly in multithreaded servers, such as IIS or Zeus, and is automatically
|
|
@@ -578,7 +575,7 @@ upload_max_filesize = 2M
|
|
;;;;;;;;;;;;;;;;;;
|
|
|
|
; Whether to allow the treatment of URLs (like http:// or ftp://) as files.
|
|
-allow_url_fopen = On
|
|
+allow_url_fopen = Off
|
|
|
|
; Whether to allow include/require to open URLs (like http:// or ftp://) as files.
|
|
allow_url_include = Off
|
|
@@ -599,81 +596,6 @@ default_socket_timeout = 60
|
|
; fgets() and file() will work regardless of the source of the file.
|
|
; auto_detect_line_endings = Off
|
|
|
|
-
|
|
-;;;;;;;;;;;;;;;;;;;;;;
|
|
-; Dynamic Extensions ;
|
|
-;;;;;;;;;;;;;;;;;;;;;;
|
|
-;
|
|
-; If you wish to have an extension loaded automatically, use the following
|
|
-; syntax:
|
|
-;
|
|
-; extension=modulename.extension
|
|
-;
|
|
-; For example, on Windows:
|
|
-;
|
|
-; extension=msql.dll
|
|
-;
|
|
-; ... or under UNIX:
|
|
-;
|
|
-; extension=msql.so
|
|
-;
|
|
-; Note that it should be the name of the module only; no directory information
|
|
-; needs to go here. Specify the location of the extension with the
|
|
-; extension_dir directive above.
|
|
-
|
|
-
|
|
-; Windows Extensions
|
|
-; Note that ODBC support is built in, so no dll is needed for it.
|
|
-; Note that many DLL files are located in the extensions/ (PHP 4) ext/ (PHP 5)
|
|
-; extension folders as well as the separate PECL DLL download (PHP 5).
|
|
-; Be sure to appropriately set the extension_dir directive.
|
|
-
|
|
-;extension=php_bz2.dll
|
|
-;extension=php_curl.dll
|
|
-;extension=php_dba.dll
|
|
-;extension=php_dbase.dll
|
|
-;extension=php_exif.dll
|
|
-;extension=php_fdf.dll
|
|
-;extension=php_gd2.dll
|
|
-;extension=php_gettext.dll
|
|
-;extension=php_gmp.dll
|
|
-;extension=php_ifx.dll
|
|
-;extension=php_imap.dll
|
|
-;extension=php_interbase.dll
|
|
-;extension=php_ldap.dll
|
|
-;extension=php_mbstring.dll
|
|
-;extension=php_mcrypt.dll
|
|
-;extension=php_mhash.dll
|
|
-;extension=php_mime_magic.dll
|
|
-;extension=php_ming.dll
|
|
-;extension=php_msql.dll
|
|
-;extension=php_mssql.dll
|
|
-;extension=php_mysql.dll
|
|
-;extension=php_mysqli.dll
|
|
-;extension=php_oci8.dll
|
|
-;extension=php_openssl.dll
|
|
-;extension=php_pdo.dll
|
|
-;extension=php_pdo_firebird.dll
|
|
-;extension=php_pdo_mssql.dll
|
|
-;extension=php_pdo_mysql.dll
|
|
-;extension=php_pdo_oci.dll
|
|
-;extension=php_pdo_oci8.dll
|
|
-;extension=php_pdo_odbc.dll
|
|
-;extension=php_pdo_pgsql.dll
|
|
-;extension=php_pdo_sqlite.dll
|
|
-;extension=php_pgsql.dll
|
|
-;extension=php_pspell.dll
|
|
-;extension=php_shmop.dll
|
|
-;extension=php_snmp.dll
|
|
-;extension=php_soap.dll
|
|
-;extension=php_sockets.dll
|
|
-;extension=php_sqlite.dll
|
|
-;extension=php_sybase_ct.dll
|
|
-;extension=php_tidy.dll
|
|
-;extension=php_xmlrpc.dll
|
|
-;extension=php_xsl.dll
|
|
-;extension=php_zip.dll
|
|
-
|
|
;;;;;;;;;;;;;;;;;;;
|
|
; Module Settings ;
|
|
;;;;;;;;;;;;;;;;;;;
|
|
@@ -721,13 +643,6 @@ default_socket_timeout = 60
|
|
define_syslog_variables = Off
|
|
|
|
[mail function]
|
|
-; For Win32 only.
|
|
-SMTP = localhost
|
|
-smtp_port = 25
|
|
-
|
|
-; For Win32 only.
|
|
-;sendmail_from = me@example.com
|
|
-
|
|
; For Unix only. You may supply arguments as well (default: "sendmail -t -i").
|
|
;sendmail_path =
|
|
|
|
@@ -1306,6 +1221,53 @@ soap.wsdl_cache_dir="/tmp"
|
|
; instead of original one.
|
|
soap.wsdl_cache_ttl=86400
|
|
|
|
-; Local Variables:
|
|
-; tab-width: 4
|
|
-; End:
|
|
+;;;;;;;;;;;;;;;;;;;;;;
|
|
+; Dynamic Extensions ;
|
|
+;;;;;;;;;;;;;;;;;;;;;;
|
|
+;
|
|
+; If you wish to have an extension loaded automatically, use the following
|
|
+; syntax:
|
|
+;
|
|
+; extension=modulename.so
|
|
+;
|
|
+; Note that it should be the name of the module only; no directory information
|
|
+; needs to go here. Specify the location of the extension with the
|
|
+; extension_dir directive above.
|
|
+
|
|
+;extension=bz2.so
|
|
+;extension=cpdf.so
|
|
+;extension=crack.so
|
|
+;extension=curl.so
|
|
+;extension=db.so
|
|
+;extension=dba.so
|
|
+;extension=dbase.so
|
|
+;extension=dbx.so
|
|
+;extension=exif.so
|
|
+;extension=fbsql.so
|
|
+;extension=fdf.so
|
|
+;extension=filepro.so
|
|
+;extension=gd.so
|
|
+;extension=hyperwave.so
|
|
+;extension=ifx.so
|
|
+;extension=imap.so
|
|
+;extension=interbase.so
|
|
+;extension=java.so
|
|
+;extension=ldap.so
|
|
+;extension=mbstring.so
|
|
+;extension=mcrypt.so
|
|
+;extension=mhash.so
|
|
+;extension=ming.so
|
|
+;extension=mssql.so
|
|
+;extension=mysql.so
|
|
+;extension=oci8.so
|
|
+;extension=openssl.so
|
|
+;extension=oracle.so
|
|
+;extension=pdf.so
|
|
+;extension=pgsql.so
|
|
+;extension=printer.so
|
|
+;extension=shmop.so
|
|
+;extension=snmp.so
|
|
+;extension=sockets.so
|
|
+;extension=sybase_ct.so
|
|
+;extension=xmlrpc.so
|
|
+;extension=yaz.so
|