aboutsummaryrefslogtreecommitdiffstats
path: root/mod
diff options
context:
space:
mode:
authorfriendica <info@friendica.com>2013-02-26 19:41:44 -0800
committerfriendica <info@friendica.com>2013-02-26 19:41:44 -0800
commit70e766c2bfb4f145564912837864f27aafc82ea2 (patch)
treea27aea06e255265af6819a3a836414978444098f /mod
parented2ff18cac816fccf28ab2450fdd0f9541427286 (diff)
downloadvolse-hubzilla-70e766c2bfb4f145564912837864f27aafc82ea2.tar.gz
volse-hubzilla-70e766c2bfb4f145564912837864f27aafc82ea2.tar.bz2
volse-hubzilla-70e766c2bfb4f145564912837864f27aafc82ea2.zip
xss attack vector in bbcode.php - check for proc_open being disabled for security reasons in install
Diffstat (limited to 'mod')
-rwxr-xr-xmod/setup.php6
1 files changed, 6 insertions, 0 deletions
diff --git a/mod/setup.php b/mod/setup.php
index 37bb572f9..cd303205e 100755
--- a/mod/setup.php
+++ b/mod/setup.php
@@ -397,6 +397,12 @@ function check_funcs(&$checks) {
check_add($ck_funcs, t('Apache mod_rewrite module'), true, true, "");
}
}
+ if((! function_exists('proc_open')) || strstr(ini_get('disable_functions'),'proc_open')) {
+ check_add($ck_funcs, t('proc_open'), false, true, t('Error: proc_open is required but is either not installed or has been disabled in php.ini'));
+ }
+ else {
+ check_add($ck_funcs, t('proc_open'), true, true, "");
+ }
if(! function_exists('curl_init')){
$ck_funcs[0]['status']= false;