The "allow_url_fopen" option will be turned off by my server ! The "allow_url_fopen" option will be turned off by my server !
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

The "allow_url_fopen" option will be turned off by my server !

Started by Tchit, March 19, 2005, 01:29:28 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

Tchit

March 19, 2005, 01:29:28 PM
They say this PHP function is dangerous for their servers (security hole). The allow_url_fopen php function will be disabled in 10 days.

I have seen that it is a used function by Coppermine. What is it exactly for ? Can I use Coppermine without this function ? Will Coppermine work normaly?

Is there a solution ???

I am really afraid ! Thank you in advance !

Nibbler

#1
March 19, 2005, 02:04:08 PM
As far as I can see it is only used by the versionchecker, so it shouldn't cause any real problems.

Huser

#2
April 08, 2005, 11:03:41 PM
It will definitly work. ;D I had this happen to me and i have seen no problems.

If you still want to include files on your webpages use Curl instead of php include. Same results but curl will still work! Like below.

Quote<?php
$curl_handle=curl_init();
curl_setopt($curl_handle,CURLOPT_URL,'http://www.yoursite.com/file.php');
curl_exec($curl_handle);
curl_close($curl_handle);
?>

Does the same thing and run even though the allow_urlfopen is off and Curl can do alot more.

Joachim Müller

#3
April 09, 2005, 12:27:22 PM
URI upload will be affected as well as far as I can see.

Joachim
Print
Go Up Pages1
User actions