; Whether to use cookies.
session.use_cookies = 1
+--- ./php.ini~ 2005-07-14 17:34:35.000000000 +0300
++++ ./php.ini 2005-07-14 20:14:13.000000000 +0300
+@@ -598,56 +598,6 @@
+ ; needs to go here. Specify the location of the extension with the
+ ; extension_dir directive above.
+
+-
+-;Windows Extensions
+-;Note that MySQL and ODBC support is now built in, so no dll is needed for it.
+-;
+-;extension=php_mbstring.dll
+-;extension=php_bz2.dll
+-;extension=php_cpdf.dll
+-;extension=php_crack.dll
+-;extension=php_curl.dll
+-;extension=php_db.dll
+-;extension=php_dba.dll
+-;extension=php_dbase.dll
+-;extension=php_dbx.dll
+-;extension=php_domxml.dll
+-;extension=php_exif.dll
+-;extension=php_fdf.dll
+-;extension=php_filepro.dll
+-;extension=php_gd2.dll
+-;extension=php_gettext.dll
+-;extension=php_hyperwave.dll
+-;extension=php_iconv.dll
+-;extension=php_ifx.dll
+-;extension=php_iisfunc.dll
+-;extension=php_imap.dll
+-;extension=php_interbase.dll
+-;extension=php_java.dll
+-;extension=php_ldap.dll
+-;extension=php_mcrypt.dll
+-;extension=php_mhash.dll
+-;extension=php_mime_magic.dll
+-;extension=php_ming.dll
+-;extension=php_mssql.dll
+-;extension=php_msql.dll
+-;extension=php_oci8.dll
+-;extension=php_openssl.dll
+-;extension=php_oracle.dll
+-;extension=php_pdf.dll
+-;extension=php_pgsql.dll
+-;extension=php_printer.dll
+-;extension=php_shmop.dll
+-;extension=php_snmp.dll
+-;extension=php_sockets.dll
+-;extension=php_sybase_ct.dll
+-;extension=php_w32api.dll
+-;extension=php_xmlrpc.dll
+-;extension=php_xslt.dll
+-;extension=php_yaz.dll
+-;extension=php_zip.dll
+-
+-
+ ;;;;;;;;;;;;;;;;;;;
+ ; Module Settings ;
+ ;;;;;;;;;;;;;;;;;;;
+--- ./php.ini.old 2003-07-20 03:14:22.000000000 -0700
++++ ./php.ini 2003-07-20 03:14:51.000000000 -0700
+@@ -488,7 +488,9 @@
+ ;;;;;;;;;;;;;;;;;;
+
+ ; Whether to allow the treatment of URLs (like http:// or ftp://) as files.
+-allow_url_fopen = On
++; allow_url_fopen = On
++; Closed for security - <glen@pld-linux.org>
++allow_url_fopen = Off
+
+ ; Define the anonymous ftp password (your email address)
+ ;from="john@doe.com"
+--- php-4.4.8/php.ini-dist~ 2008-07-02 18:50:01.000000000 +0300
++++ php-4.4.8/php.ini-dist 2008-07-02 18:56:09.636680270 +0300
+@@ -482,7 +482,7 @@
+ ; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root
+ ; if you are running php as a CGI under any web server (other than IIS)
+ ; see documentation for security issues. The alternate is to use the
+-; cgi.force_redirect configuration below
++; cgi.force_redirect elsewhere
+ doc_root =
+
+ ; The directory under which PHP opens the script using /~username used only
+@@ -497,48 +497,6 @@
+ ; disabled on them.
+ enable_dl = On
+
+-; cgi.force_redirect is necessary to provide security running PHP as a CGI under
+-; most web servers. Left undefined, PHP turns this on by default. You can
+-; turn it off here AT YOUR OWN RISK
+-; **You CAN safely turn this off for IIS, in fact, you MUST.**
+-; cgi.force_redirect = 1
+-
+-; if cgi.nph is enabled it will force cgi to always sent Status: 200 with
+-; every request.
+-; cgi.nph = 1
+-
+-; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape
+-; (iPlanet) web servers, you MAY need to set an environment variable name that PHP
+-; will look for to know it is OK to continue execution. Setting this variable MAY
+-; cause security issues, KNOW WHAT YOU ARE DOING FIRST.
+-; cgi.redirect_status_env = ;
+-
+-; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's
+-; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok
+-; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting
+-; this to 1 will cause PHP CGI to fix it's paths to conform to the spec. A setting
+-; of zero causes PHP to behave as before. Default is zero. You should fix your scripts
+-; to use SCRIPT_FILENAME rather than PATH_TRANSLATED.
+-; cgi.fix_pathinfo=0
+-
+-; FastCGI under IIS (on WINNT based OS) supports the ability to impersonate
+-; security tokens of the calling client. This allows IIS to define the
+-; security context that the request runs under. mod_fastcgi under Apache
+-; does not currently support this feature (03/17/2002)
+-; Set to 1 if running under IIS. Default is zero.
+-; fastcgi.impersonate = 1;
+-
+-; Disable logging through FastCGI connection
+-; fastcgi.log = 0
+-
+-; cgi.rfc2616_headers configuration option tells PHP what type of headers to
+-; use when sending HTTP response code. If it's set 0 PHP sends Status: header that
+-; is supported by Apache. When this option is set to 1 PHP will send
+-; RFC2616 compliant header.
+-; Default is zero.
+-;cgi.rfc2616_headers = 0
+-
+-
+ ;;;;;;;;;;;;;;;;
+ ; File Uploads ;
+ ;;;;;;;;;;;;;;;;
+@@ -553,7 +511,6 @@
+ ; Maximum allowed size for uploaded files.
+ upload_max_filesize = 2M
+
+-
+ ;;;;;;;;;;;;;;;;;;
+ ; Fopen wrappers ;
+ ;;;;;;;;;;;;;;;;;;
projects / packages / php4.git / blobdiff