[horde] strange errors in horde-log
Reindl Harald
h.reindl at thelounge.net
Fri May 20 09:25:09 UTC 2011
Am 20.05.2011 11:20, schrieb Vilius Šumskas:
>> Am 20.05.2011 11:00, schrieb Vilius Šumskas:
>>>> Am 20.05.2011 10:35, schrieb Ronan SALMON:
>>>>> Michael M Slusarz <slusarz at horde.org> a écrit :
>>>>>
>>>>>> I really hope this is not another thing that suhosin breaks.
>>>>>
>>>>> Although it is specified in docs files, you probably could add a suhosin
>>>> detection script in the test.php files
>>>>> (and/or the horde/admin/config pages) and display some kind of
>> warning.
>>>> It should then help a lot admins that
>>>>> didn't read carefully the docs files or didn't even know that they had the
>>>> suhosin extension enabled.
>>>>
>>>> instead of forcing admins to exclude an application from security-
>> extensions
>>>> the application has to be developed/tested against suhosin since this is
>>>> not a exotic extension
>>>>
>>>> H3 has/had no problems with suhosin also not with mod_security (except
>>>> mail-send)
>>>> and if H4 has problems here something went wrong
>>>
>>> It is not exotic, bad it's amateur and badly written.
>>
>> who is saying this?
>> you?
>
> No. Core PHP team. It was one of the main reasons why it wasn't accepted into PHP core in the
> first place. But that's not really the topic of this thread.
the same core team which says "disallowed_function" is impossible for a vhost
because per-request-performance, display the <Directory>-Setting of the value
in phpinfo() while the functions are active and suhosin-extension
can do this?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 261 bytes
Desc: OpenPGP digital signature
URL: <http://lists.horde.org/archives/horde/attachments/20110520/7a971787/attachment.bin>
More information about the horde
mailing list