[Typo3-debian] Suggestion: safe_mode and open_basedir support in TYPO3 Debian package

[Andreas Kotes]

Heya,

* Lars E. D. Jensen | DCmedia <ledj-typo3 at dcmedia.biz> [20040607 17:05]:
> >3. For now I have the following symlinks in my exec folder:
> >lrwxrwxrwx    1 root     root           18 Jun  5 08:19 composite -> /usr/bin/composite
> >lrwxrwxrwx    1 root     root           16 Jun  5 08:19 convert -> /usr/bin/convert
> >lrwxrwxrwx    1 root     root           13 Jun  5 08:19 diff -> /usr/bin/diff
> >lrwxrwxrwx    1 root     root           17 Jun  5 08:19 identify -> /usr/bin/identify
> >lrwxrwxrwx    1 root     root           16 Jun  5 08:19 pdfinfo -> /usr/bin/pdfinfo
> >lrwxrwxrwx    1 root     root           18 Jun  5 08:19 pdftotext -> /usr/bin/pdftotext
> >lrwxrwxrwx    1 root     root           18 Jun  5 08:23 sendmail -> /usr/sbin/sendmail
> >lrwxrwxrwx    1 root     root            8 Jun  5 08:19 tar -> /bin/tar
> >lrwxrwxrwx    1 root     root           14 Jun  5 08:19 unzip -> /usr/bin/unzip
> >
> >Notice that all is owned by root, the exec folder could contain _every_ 
> >possible symlinks to standard linked executables used in TYPO3 outside 
> 
> SHOULD NOT BE OWNED BY ROOT!!!  Somehow the files get "null byted" when 
> owned by root... (they get touched). Owner and group is obviously a 
> mistake in the symlinks above... BE WARE :)

the permissions/ownership of symlinks are totally irrelevant. the
permissions/ownership of the files they point to matters.

   Count

-- 
Andreas Kotes - ICQ: 3741366 - The views expressed herein are (only) mine!
Follow the path of the unsafe, independent thinker. Expose your ideas to the
danger of controversy. Speak your mind and fear less the label of "crackpot"
than the stigma of conformity. (Thomas J. Watson) ### OpenPGP key 0x8F94C228