blob: 6940204b1ae18b1b518f9e663e537ab27e24ec11 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
Description: Adds security notices to php.ini settings
Origin: vendor
Forwarded: not-needed
Last-Update: 2010-01-18
--- php5.orig/php.ini-development
+++ php5/php.ini-development
@@ -295,6 +295,12 @@ serialize_precision = 17
; and below. This directive makes most sense if used in a per-directory
; or per-virtualhost web server configuration file.
; http://php.net/open-basedir
+
+; NOTE: this is considered a "broken" security measure.
+; Applications relying on this feature will not receive full
+; support by the security team. For more information please
+; see /usr/share/doc/php5-common/README.Debian.security
+;
;open_basedir =
; This directive allows you to disable certain functions for security reasons.
|
