Feature #851
Feature Request: New option "x-send-file-docroot"
| Status: | New | Start: | ||
| Priority: | Normal | Due date: | ||
| Assigned to: | jan | % Done: | 0% |
|
| Category: | mod_fastcgi | |||
| Target version: | - | |||
| Pending: | Resolution: | |||
Description
<?php
$file = "/etc/passwd";
header("Content-Type: text/plain");
header("X-LIGHTTPD-send-file: ".$file);
flush();
exit();
?>
Do i need more explanation ?
"allow-x-send-file" => "enable" is a very good feature, but its a little bit too powerful. So, it would be nice to restrict this function to a separate doc-root (or the same as the doc-root of the specific vhosts)
P.S: Excuse my english, i am german (nobody is perfect ;))
-- eebkiller
History
10/07/2006 03:45 AM - darix
/etc/passwd is more or less not critical. at least on linux. /etc/shadow is more critical. but that should be root only. whoever runs his webserver as root should be shot in the first place.
anyway.... x-sendfile has other problems. what if the user creates a php script that symlinks /etc/shadow into his docroot?
i personally would say: only enable x-sendfile for trusted scripts. on mass hosting environments i would leave it off. And i really wonder if a check like that would put us on the same road as php's open_basedir.
jan do we want that? at the first sight, the code for that looks trivial.