View Single Post
Old 16th December 2011, 20:07
cbj4074 cbj4074 is offline
Senior Member
Join Date: Nov 2010
Posts: 395
Thanks: 30
Thanked 58 Times in 50 Posts

The PHP documentation is misleading. Apparently, the statement

As an Apache module, open_basedir paths from parent directories are now automatically inherited.
means that if the open_basedir directive is defined as such

<Directory /var/www/>
php_value open_basedir "/tmp:/var/www/"
then a script in /var/www/ will have access to /tmp. It does NOT mean that more specific open_basedir values may be defined for child directories to create a "cascading" or "stacking" effect.

So, adding to the above directive something like

<Directory /var/www/>
php_value open_basedir "/var/www/"
will NOT make the effective open_basedir for /var/www/


but rather so doing will OVERWRITE the parent directory's open_basedir definition and make the effective open_basedir


It seems prudent to open a bug report for the PHP documentation and request that this statement be clarified.
Reply With Quote