diff options
| author | Shane Caraveo <shane@php.net> | 2003-05-25 18:35:18 +0000 |
|---|---|---|
| committer | Shane Caraveo <shane@php.net> | 2003-05-25 18:35:18 +0000 |
| commit | 67ebb942b66cadbcf770bcb0d4f203efe177ac18 (patch) | |
| tree | c2f1506bddbf64243778fa1f8bcc2c1331253587 | |
| parent | d9cf9e37fbf13112cfa7394ba6f9a7ca68bd7b28 (diff) | |
| download | php-git-67ebb942b66cadbcf770bcb0d4f203efe177ac18.tar.gz | |
http://bugs.php.net/bug.php?id=23800
change the default for those who cannot
this was actually done a long time ago, but got reverted along the way
| -rw-r--r-- | php.ini-dist | 8 | ||||
| -rw-r--r-- | php.ini-recommended | 8 | ||||
| -rw-r--r-- | sapi/cgi/cgi_main.c | 2 |
3 files changed, 17 insertions, 1 deletions
diff --git a/php.ini-dist b/php.ini-dist index 358db2aa1d..3e2958561e 100644 --- a/php.ini-dist +++ b/php.ini-dist @@ -444,6 +444,14 @@ enable_dl = On ; cause security issues, KNOW WHAT YOU ARE DOING FIRST. ; cgi.redirect_status_env = ; +; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's +; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok +; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting +; this to 1 will cause PHP CGI to fix it's paths to conform to the spec. A setting +; of zero causes PHP to behave as before. Default is zero. You should fix your scripts +; to use SCRIPT_FILENAME rather than PATH_TRANSLATED. +; cgi.fix_pathinfo=0 + ; FastCGI under IIS (on WINNT based OS) supports the ability to impersonate ; security tokens of the calling client. This allows IIS to define the ; security context that the request runs under. mod_fastcgi under Apache diff --git a/php.ini-recommended b/php.ini-recommended index 89c60df5d7..b801ea2551 100644 --- a/php.ini-recommended +++ b/php.ini-recommended @@ -459,6 +459,14 @@ enable_dl = On ; cause security issues, KNOW WHAT YOU ARE DOING FIRST. ; cgi.redirect_status_env = ; +; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's +; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok +; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting +; this to 1 will cause PHP CGI to fix it's paths to conform to the spec. A setting +; of zero causes PHP to behave as before. Default is zero. You should fix your scripts +; to use SCRIPT_FILENAME rather than PATH_TRANSLATED. +; cgi.fix_pathinfo=1 + ; FastCGI under IIS (on WINNT based OS) supports the ability to impersonate ; security tokens of the calling client. This allows IIS to define the ; security context that the request runs under. mod_fastcgi under Apache diff --git a/sapi/cgi/cgi_main.c b/sapi/cgi/cgi_main.c index 71c3f57920..16b4b136c0 100644 --- a/sapi/cgi/cgi_main.c +++ b/sapi/cgi/cgi_main.c @@ -1062,7 +1062,7 @@ consult the installation file that came with this distribution, or visit \n\ #if ENABLE_PATHINFO_CHECK if (cfg_get_long("cgi.fix_pathinfo", &fix_pathinfo) == FAILURE) { - fix_pathinfo = 1; + fix_pathinfo = 0; } #endif |