From owner-freebsd-ports  Wed Feb 27 11:23:22 2002
Delivered-To: freebsd-ports@freebsd.org
Received: from voi.aagh.net (pc1-hart4-0-cust168.mid.cable.ntl.com [62.254.84.168])
	by hub.freebsd.org (Postfix) with ESMTP id DDF2737B405
	for <freebsd-ports@freebsd.org>; Wed, 27 Feb 2002 11:23:17 -0800 (PST)
Received: from freaky by voi.aagh.net with local (Exim 3.35 #1)
	id 16g9fY-0000Kc-00
	for freebsd-ports@freebsd.org; Wed, 27 Feb 2002 19:23:16 +0000
Date: Wed, 27 Feb 2002 19:23:16 +0000
From: Thomas Hurst <tom.hurst@clara.net>
To: freebsd-ports@freebsd.org
Subject: Re: PHP 4.1.1 security bug
Message-ID: <20020227192316.GA819@voi.aagh.net>
Mail-Followup-To: freebsd-ports@freebsd.org
References: <DBEMKGPNFGOGJHLMDNDJMEMGGCAA.mitayai@dreamlabs.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <DBEMKGPNFGOGJHLMDNDJMEMGGCAA.mitayai@dreamlabs.com>
User-Agent: Mutt/1.3.27i
Organization: Not much.
X-Operating-System: FreeBSD/4.5-PRERELEASE (i386)
X-Uptime: 7:16PM  up 69 days,  4:01, 5 users, load averages: 2.03, 2.05, 2.02
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-ports.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-ports>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-ports>
X-Loop: FreeBSD.org

* Mit Rowe (mitayai@dreamlabs.com) wrote:

> Ref: http://www.php.net
> http://security.e-matters.de/advisories/012002.html

Setting file_uploads = Off in php.ini will prevent the offending
function being called.

-- 
Thomas 'Freaky' Hurst  -  freaky@aagh.net  -  http://www.aagh.net/
-
Life is like a diaper - short and loaded.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message