diff options
Diffstat (limited to 'plugins/SecurityInfo/PhpSecInfo/Test/Core/open_basedir.php')
-rw-r--r-- | plugins/SecurityInfo/PhpSecInfo/Test/Core/open_basedir.php | 69 |
1 files changed, 69 insertions, 0 deletions
diff --git a/plugins/SecurityInfo/PhpSecInfo/Test/Core/open_basedir.php b/plugins/SecurityInfo/PhpSecInfo/Test/Core/open_basedir.php new file mode 100644 index 0000000000..d5b0d282f6 --- /dev/null +++ b/plugins/SecurityInfo/PhpSecInfo/Test/Core/open_basedir.php @@ -0,0 +1,69 @@ +<?php +/** + * Test Class for open_basedir + * + * @package PhpSecInfo + * @author Ed Finkler <coj@funkatron.com> + */ + + +/** + * require the PhpSecInfo_Test_Core class + */ +require_once(PHPSECINFO_BASE_DIR.'/Test/Test_Core.php'); + +/** + * Test Class for open_basedir + * + * @package PhpSecInfo + */ +class PhpSecInfo_Test_Core_Open_Basedir extends PhpSecInfo_Test_Core +{ + + /** + * This should be a <b>unique</b>, human-readable identifier for this test + * + * @var string + */ + var $test_name = "open_basedir"; + + var $recommended_value = TRUE; + + + function _retrieveCurrentValue() { + $this->current_value = $this->getBooleanIniValue('open_basedir'); + } + + + /** + * Checks to see if allow_url_fopen is enabled + * + */ + function _execTest() { + if ($this->current_value == $this->recommended_value) { + return PHPSECINFO_TEST_RESULT_OK; + } + + return PHPSECINFO_TEST_RESULT_NOTICE; + } + + + /** + * Set the messages specific to this test + * + */ + function _setMessages() { + parent::_setMessages(); + + $this->setMessageForResult(PHPSECINFO_TEST_RESULT_OK, 'en', 'open_basedir is enabled, which is the + recommended setting. Keep in mind that other web applications not written in PHP will not + be restricted by this setting.'); + $this->setMessageForResult(PHPSECINFO_TEST_RESULT_NOTICE, 'en', 'open_basedir is disabled. When + this is enabled, only files that are in the + given directory/directories and their subdirectories can be read by PHP scripts. + You should consider turning this on. Keep in mind that other web applications not + written in PHP will not be restricted by this setting.'); + } + + +}
\ No newline at end of file |