Information Required ? ? Pending

User tests: Successful: Unsuccessful:

avatar TFujiwara
TFujiwara
23 Mar 2020

Don't repeat restriction of not accessing the root folder of the web if the open_basedir php directive is enabled and well configured

Expected result

Allowing to edit the framework from another directory that is not the webroot.

Actual result

Allowed editing from another directory that is not the webroot.

avatar TFujiwara TFujiwara - open - 23 Mar 2020
avatar TFujiwara TFujiwara - change - 23 Mar 2020
Status New Pending
avatar joomla-cms-bot joomla-cms-bot - change - 23 Mar 2020
Category Libraries
avatar zero-24
zero-24 - comment - 23 Mar 2020

Hi thanks for your contribution to the joomla core!

Can you provide a bit more about why do we need this change and how to test this please?

avatar zero-24
zero-24 - comment - 24 Apr 2020

@TFujiwara we have just discussed that in the Security Team can you please give us more Details on what is your use case so we can understand why you want to remove that check. So we can check that and move this thing here forward.

avatar Quy
Quy - comment - 17 Jul 2020

Closing due to no response.

avatar Quy Quy - change - 17 Jul 2020
Status Pending Closed
Closed_Date 0000-00-00 00:00:00 2020-07-17 17:09:31
Closed_By Quy
Labels Added: Information Required ? ?
avatar Quy Quy - close - 17 Jul 2020

Add a Comment

Login with GitHub to post a comment