[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] [RaQ4] PHP/Gnupg question

Subject: RE: [cobalt-users] [RaQ4] PHP/Gnupg question
From: "Erica Douglass" <erica@xxxxxxxxxx>
Date: Tue May 20 10:48:40 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

-----Original Message-----
From: cobalt-users-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-users-admin@xxxxxxxxxxxxxxx] On Behalf Of Andy Clyde,
oxfordmusic.net
Sent: Tuesday, May 20, 2003 8:22 AM
To: Cobalt Users
Subject: [cobalt-users] [RaQ4] PHP/Gnupg question

i have just installed Gnupg on the request of a client. this client
wants to
use a combination of Gnupg and PHP to send secure emails.
in my PHP setup, i turned Safe_Mode on as there are multiple domains on
the
server. 
[snip]

------

Hi Andy,

Safe mode in PHP is almost completely useless. In fact, the PHP manual
even says so:

http://php.lamphost.net/manual/en/features.safe-mode.php -- "The PHP
safe mode is an attempt to solve the shared-server security problem. It
is architecturally incorrect to try to solve this problem at the PHP
level."

There are lots of other options available, many of which are documented
on the safe_mode page. If you need more options (and more opinions on
why safe_mode isn't the right answer to your problems), visit #php on
irc.freenode.net. Short answer: disable safe_mode, let your users use
GnuPG, and find a better security solution.

Thanks,
Erica Douglass
Lead Web Developer
Simpli, Inc.

References:
- [cobalt-users] [RaQ4] PHP/Gnupg question
  - From: Andy Clyde, oxfordmusic.net

Prev by Date: RE: [cobalt-users] Cannot Create Users or email Alias's all of the Sudden on a RAQ550 ADDED
Next by Date: RE: [cobalt-users] Cannot Create Users or email Alias's all of the Sudden on a RAQ550 ADDED
Previous by thread: [cobalt-users] [RaQ4] PHP/Gnupg question
Next by thread: [cobalt-users] Moving Files from /Var

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index