open_basedir not working following paths

[paulkudla]

Description

The following code:
General random Occurances (Word Press Sites)

when using apache server with directory statement

php_admin_value open_basedir /data/www//:/var/log/:/usr/local/share/pear/

or

php_admin_value open_basedir /data/www/:/var/log:/usr/local/share/pear
(ending slashes removed) - documentation is not clear on multiple formtted directories but neither work as expected.

Resulted in this output:Random site crashes

Warning: Unknown: open_basedir restriction in effect. File(/data/www/team.22Racing.ca/index.php) is not within the allowed path(s): (/data/www/team.22Racing.ca/tmp/) in Unknown on line 0

Warning: Unknown: failed to open stream: Operation not permitted in Unknown on line 0

Fatal error: Unknown: Failed opening required '/data/www/team.22Racing.ca/index.php' (include_path='.:/usr/local/share/pear') in Unknown on line 0

Note that both are in the allowed path especially index.php ?

But I expected this output instead:
site should work as NO file(s) are being accessed outside their home directory.

With display errors on you get the error's reported above, with dispaly off it crashes the site so either way open_basedir is blocking file access?

but open_basedir fails anyways, this IS required to keep a shared server secured, aka the wordpress hack years ago that brough down myself, 1and1 hosting etc.

Please note this has been reported in various versions over the years (going back to 5.xx etc), any ticket opened did not carry any real fixes to this issue that appears to be php is not following the allowed path(s) properly into the path sub directories ?

This issue appears weather or not opcache, fpm etc is compiled in or not ?

See Bug(s) Reported 👍
https://bugs.php.net/bug.php?id=78764
https://bobcares.com/blog/wordpress-warning-open_basedir-restriction-in-effect/
https://bugs.php.net/bug.php?id=48880

Please note this is a production server running httpd-2.4.43, memcached, openssl, mod_fcgid-2.3.9, mod_wsgi-4.7.1,

I am trying to update to PHP 8.0.21 to see if that helps and will advise, however I am unable to goto the lastest PHP version due to incompatibility with elegant themes and other site(s) programming.

I am running the latest version of word press if that helps but this seems to be a low level file php issue (rights on all site are correct chmod 755)

I can provide test site duplicating the errors if you wish.

I am here to help, been programming for over 40 years and usually muddle through config issues like this?

PHP Version

PHP php-7.4.33

Operating System

Freebsd 12.1

[devnexen]

Note that the whole php 7.x serie is no longer supported. Do you have the possibility to upgrade to a php 8.1/8.2 at least ?

[paulkudla]

Thanks for getting back to me, I am going to install 8.1.27 tonight and see if it corrects the issues apparently elegant themes and my customer can support 8.1.27 so will advise on that when installed. Also note that when testing, the site(s) run fine for a few minutes and then starts producing the issue, i restart apache and its ok again for a few minutes, errors are random. It appers to be anything from a memory leak to a core crash but can not find the core dump files ? Also note that open_basedir = None causes the issue as well, if the config line is completly absent then php is running ok but open to attacks ? elegant themes does support 8.1 but not 8.2 onwards that which is a wordpress plugin and various other sites would require upgrading at my expense. fyi Have A Happy Tuesday !!! Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.) Scom.ca Internet Services <http://www.scom.ca> 004-1009 Byron Street South Whitby, Ontario - Canada L1N 4S3 Toronto 416.642.7266 Main 1.866.411.7266 Fax 1.888.892.7266 ***@***.***

…

On 1/23/2024 7:33 AM, David CARLIER wrote: Note that the whole php 7.x serie is no longer supported. Do you have the possibility to upgrade to a php 8.1/8.2 at least ? — Reply to this email directly, view it on GitHub <#13226 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AO6L5WLG4YZFXNC5DZZZBPLYP6U3NAVCNFSM6AAAAABCG3B54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMBVHE3DMNJTGQ>. You are receiving this because you authored the thread.Web Bug from https://github.com/notifications/beacon/AO6L5WN3QFZFF5UGXATAREDYP6U3NA5CNFSM6AAAAABCG3B54SWGG33NNVSW45C7OR4XAZNMJFZXG5LFINXW23LFNZ2KUY3PNVWWK3TUL5UWJTTRTK64M.gifMessage ID: ***@***.***> [ { ***@***.***": "http://schema.org", ***@***.***": "EmailMessage", "potentialAction": { ***@***.***": "ViewAction", "target": "#13226 (comment)", "url": "#13226 (comment)", "name": "View Issue" }, "description": "View this Issue on GitHub", "publisher": { ***@***.***": "Organization", "name": "GitHub", "url": "https://github.com" } } ] -- This message has been scanned for viruses and dangerous content by *MailScanner* <http://www.mailscanner.info/>, and is believed to be clean.

[paulkudla]

Good morning, Long story short i have compiled php 8.1.27 and installed it system for the moment appears stable with the open_basedir enabled ? However opcache will not activate ? Please see : www.scom.ca/phpinfo.php for how i compiled everything Also i lost my logging ? On 7.3 i used to get the startup modules loaded etc ? display_errors = On log_errors = On ;error_reporting(E_WARNING); error_reporting = E_ALL ;error_reporting = E_ALL & ~E_WARNING & ~E_DEPRECATED & ~E_USER_DEPRECATED & ~E_NOTICE when i went to php 8.1.27 it simply refuses to write anything to the log file. it is NOT a permission issue as i also trie setting the file to /tmp/php.log and nothing was written there either, but sites appear to work?? php ini zend_extention=opcache.so opcache.enable=1 opcache.memory_consumption=4096 opcache.interned_strings_buffer=128 opcache.max_accelerated_files=16384 opcache.revalidate_freq=15 opcache.validate_timestamps=1 opcache.force_restart_timeout=180 opcache.use_cwd=1 opcache.enable_cli=1 opcache.jit=1205 opcache.jit_buffer_size=16M ;opcache.file_cache="/dir/to/opcache/" ;opcache.file_cache_only=1 Have A Happy Saturday !!! Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.) Scom.ca Internet Services <http://www.scom.ca> 004-1009 Byron Street South Whitby, Ontario - Canada L1N 4S3 Toronto 416.642.7266 Main 1.866.411.7266 Fax 1.888.892.7266 ***@***.***

…

On 1/23/2024 7:33 AM, David CARLIER wrote: Note that the whole php 7.x serie is no longer supported. Do you have the possibility to upgrade to a php 8.1/8.2 at least ? — Reply to this email directly, view it on GitHub <#13226 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AO6L5WLG4YZFXNC5DZZZBPLYP6U3NAVCNFSM6AAAAABCG3B54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMBVHE3DMNJTGQ>. You are receiving this because you authored the thread.Web Bug from https://github.com/notifications/beacon/AO6L5WN3QFZFF5UGXATAREDYP6U3NA5CNFSM6AAAAABCG3B54SWGG33NNVSW45C7OR4XAZNMJFZXG5LFINXW23LFNZ2KUY3PNVWWK3TUL5UWJTTRTK64M.gifMessage ID: ***@***.***> [ { ***@***.***": "http://schema.org", ***@***.***": "EmailMessage", "potentialAction": { ***@***.***": "ViewAction", "target": "#13226 (comment)", "url": "#13226 (comment)", "name": "View Issue" }, "description": "View this Issue on GitHub", "publisher": { ***@***.***": "Organization", "name": "GitHub", "url": "https://github.com" } } ] -- This message has been scanned for viruses and dangerous content by *MailScanner* <http://www.mailscanner.info/>, and is believed to be clean.

[paulkudla]

small update i got the opcache module loading, still do not have any startup logging ?? however the site responds with a "Secure Connection Failed" when opcache.so is enabled? Have A Happy Saturday !!! Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.) Scom.ca Internet Services <http://www.scom.ca> 004-1009 Byron Street South Whitby, Ontario - Canada L1N 4S3 Toronto 416.642.7266 Main 1.866.411.7266 Fax 1.888.892.7266 ***@***.***

…

On 1/23/2024 7:33 AM, David CARLIER wrote: Note that the whole php 7.x serie is no longer supported. Do you have the possibility to upgrade to a php 8.1/8.2 at least ? — Reply to this email directly, view it on GitHub <#13226 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AO6L5WLG4YZFXNC5DZZZBPLYP6U3NAVCNFSM6AAAAABCG3B54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMBVHE3DMNJTGQ>. You are receiving this because you authored the thread.Web Bug from https://github.com/notifications/beacon/AO6L5WN3QFZFF5UGXATAREDYP6U3NA5CNFSM6AAAAABCG3B54SWGG33NNVSW45C7OR4XAZNMJFZXG5LFINXW23LFNZ2KUY3PNVWWK3TUL5UWJTTRTK64M.gifMessage ID: ***@***.***> [ { ***@***.***": "http://schema.org", ***@***.***": "EmailMessage", "potentialAction": { ***@***.***": "ViewAction", "target": "#13226 (comment)", "url": "#13226 (comment)", "name": "View Issue" }, "description": "View this Issue on GitHub", "publisher": { ***@***.***": "Organization", "name": "GitHub", "url": "https://github.com" } } ] -- This message has been scanned for viruses and dangerous content by *MailScanner* <http://www.mailscanner.info/>, and is believed to be clean.

[paulkudla]

more info aparently with opcache.so is enabled apache is throuwing segment faults ? www-1 01-27 06:20:48 {httpd-err} [44462] (1901766319) [Sat Jan 27 06:20:48.184337 2024] [core:notice] [pid 44462:tid 34370871296] AH00052: child pid 50014 exit signal Segmentation fault (11) Have A Happy Saturday !!! Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.) Scom.ca Internet Services <http://www.scom.ca> 004-1009 Byron Street South Whitby, Ontario - Canada L1N 4S3 Toronto 416.642.7266 Main 1.866.411.7266 Fax 1.888.892.7266 ***@***.***

…

On 1/23/2024 7:33 AM, David CARLIER wrote: Note that the whole php 7.x serie is no longer supported. Do you have the possibility to upgrade to a php 8.1/8.2 at least ? — Reply to this email directly, view it on GitHub <#13226 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AO6L5WLG4YZFXNC5DZZZBPLYP6U3NAVCNFSM6AAAAABCG3B54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMBVHE3DMNJTGQ>. You are receiving this because you authored the thread.Web Bug from https://github.com/notifications/beacon/AO6L5WN3QFZFF5UGXATAREDYP6U3NA5CNFSM6AAAAABCG3B54SWGG33NNVSW45C7OR4XAZNMJFZXG5LFINXW23LFNZ2KUY3PNVWWK3TUL5UWJTTRTK64M.gifMessage ID: ***@***.***> [ { ***@***.***": "http://schema.org", ***@***.***": "EmailMessage", "potentialAction": { ***@***.***": "ViewAction", "target": "#13226 (comment)", "url": "#13226 (comment)", "name": "View Issue" }, "description": "View this Issue on GitHub", "publisher": { ***@***.***": "Organization", "name": "GitHub", "url": "https://github.com" } } ] -- This message has been scanned for viruses and dangerous content by *MailScanner* <http://www.mailscanner.info/>, and is believed to be clean.

[paulkudla]

sorry for the constant updates when jit is enabled ;opcache.jit=1205 ;opcache.jit_buffer_size=16M it seems to do the core dump? Have A Happy Saturday !!! Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.) Scom.ca Internet Services <http://www.scom.ca> 004-1009 Byron Street South Whitby, Ontario - Canada L1N 4S3 Toronto 416.642.7266 Main 1.866.411.7266 Fax 1.888.892.7266 ***@***.***

…

On 1/23/2024 7:33 AM, David CARLIER wrote: Note that the whole php 7.x serie is no longer supported. Do you have the possibility to upgrade to a php 8.1/8.2 at least ? — Reply to this email directly, view it on GitHub <#13226 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AO6L5WLG4YZFXNC5DZZZBPLYP6U3NAVCNFSM6AAAAABCG3B54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMBVHE3DMNJTGQ>. You are receiving this because you authored the thread.Web Bug from https://github.com/notifications/beacon/AO6L5WN3QFZFF5UGXATAREDYP6U3NA5CNFSM6AAAAABCG3B54SWGG33NNVSW45C7OR4XAZNMJFZXG5LFINXW23LFNZ2KUY3PNVWWK3TUL5UWJTTRTK64M.gifMessage ID: ***@***.***> [ { ***@***.***": "http://schema.org", ***@***.***": "EmailMessage", "potentialAction": { ***@***.***": "ViewAction", "target": "#13226 (comment)", "url": "#13226 (comment)", "name": "View Issue" }, "description": "View this Issue on GitHub", "publisher": { ***@***.***": "Organization", "name": "GitHub", "url": "https://github.com" } } ] -- This message has been scanned for viruses and dangerous content by *MailScanner* <http://www.mailscanner.info/>, and is believed to be clean.

[paulkudla]

Good morning, Ok i have done the following and open_basedir seems to work on most sites (my included when it did not use to?) please note when this error is thrown if i refresh the page a few times without restarting the server the page will come up again but fail afterwards i can provide any logging you want me to setup and the customer is working with me, however basic logging do not seem to show anything more then what we are seeing at this time. but still throwing errors only diff i can see from the other sites is i am running a sub domain team.22automotive.ca ? and I have a dedicated ssl cert for this (fyi) You can see updated php info @ https://www.scom.ca/phpinfo.php if that helps. More then happy to make a donation, this is my way of trying to give back what everyone else has done for me in the past. Running : Freebsd 12.1 httpd-2.4.43 mod_fcgid-2.3.9 mod_ftp-0.9.6 mod_wsgi-4.7.1 mysql-8.0.21 php-8.1.27 please note i have tried all of these : #LoadModule mpm_event_module libexec/apache24/mod_mpm_event.so #LoadModule mpm_prefork_module libexec/apache24/mod_mpm_prefork.so LoadModule mpm_worker_module libexec/apache24/mod_mpm_worker.so currently running in worker mode apache. httpd -l Compiled in modules: core.c mod_so.c http_core.c # LoadModule foo_module modules/mod_foo.so # #LoadModule mpm_event_module libexec/apache24/mod_mpm_event.so #LoadModule mpm_prefork_module libexec/apache24/mod_mpm_prefork.so LoadModule mpm_worker_module libexec/apache24/mod_mpm_worker.so LoadModule authn_file_module libexec/apache24/mod_authn_file.so LoadModule authn_dbm_module libexec/apache24/mod_authn_dbm.so LoadModule authn_anon_module libexec/apache24/mod_authn_anon.so LoadModule authn_dbd_module libexec/apache24/mod_authn_dbd.so LoadModule authn_socache_module libexec/apache24/mod_authn_socache.so LoadModule authn_core_module libexec/apache24/mod_authn_core.so LoadModule authz_host_module libexec/apache24/mod_authz_host.so LoadModule authz_groupfile_module libexec/apache24/mod_authz_groupfile.so LoadModule authz_user_module libexec/apache24/mod_authz_user.so LoadModule authz_dbm_module libexec/apache24/mod_authz_dbm.so LoadModule authz_owner_module libexec/apache24/mod_authz_owner.so LoadModule authz_dbd_module libexec/apache24/mod_authz_dbd.so LoadModule authz_core_module libexec/apache24/mod_authz_core.so LoadModule authnz_fcgi_module libexec/apache24/mod_authnz_fcgi.so LoadModule access_compat_module libexec/apache24/mod_access_compat.so LoadModule auth_basic_module libexec/apache24/mod_auth_basic.so #LoadModule auth_form_module libexec/apache24/mod_auth_form.so LoadModule auth_digest_module libexec/apache24/mod_auth_digest.so #LoadModule allowmethods_module libexec/apache24/mod_allowmethods.so #LoadModule file_cache_module libexec/apache24/mod_file_cache.so #LoadModule cache_module libexec/apache24/mod_cache.so #LoadModule cache_disk_module libexec/apache24/mod_cache_disk.so #LoadModule cache_socache_module libexec/apache24/mod_cache_socache.so LoadModule socache_shmcb_module libexec/apache24/mod_socache_shmcb.so #LoadModule socache_dbm_module libexec/apache24/mod_socache_dbm.so LoadModule socache_memcache_module libexec/apache24/mod_socache_memcache.so #LoadModule watchdog_module libexec/apache24/mod_watchdog.so #LoadModule macro_module libexec/apache24/mod_macro.so #LoadModule dbd_module libexec/apache24/mod_dbd.so #LoadModule dumpio_module libexec/apache24/mod_dumpio.so #LoadModule buffer_module libexec/apache24/mod_buffer.so #LoadModule data_module libexec/apache24/mod_data.so #LoadModule ratelimit_module libexec/apache24/mod_ratelimit.so LoadModule reqtimeout_module libexec/apache24/mod_reqtimeout.so #LoadModule ext_filter_module libexec/apache24/mod_ext_filter.so #LoadModule request_module libexec/apache24/mod_request.so LoadModule include_module libexec/apache24/mod_include.so LoadModule filter_module libexec/apache24/mod_filter.so #LoadModule reflector_module libexec/apache24/mod_reflector.so #LoadModule substitute_module libexec/apache24/mod_substitute.so #LoadModule sed_module libexec/apache24/mod_sed.so #LoadModule charset_lite_module libexec/apache24/mod_charset_lite.so #LoadModule deflate_module libexec/apache24/mod_deflate.so #LoadModule xml2enc_module libexec/apache24/mod_xml2enc.so #LoadModule proxy_html_module libexec/apache24/mod_proxy_html.so LoadModule mime_module libexec/apache24/mod_mime.so LoadModule log_config_module libexec/apache24/mod_log_config.so #LoadModule log_debug_module libexec/apache24/mod_log_debug.so LoadModule log_forensic_module libexec/apache24/mod_log_forensic.so LoadModule logio_module libexec/apache24/mod_logio.so LoadModule env_module libexec/apache24/mod_env.so LoadModule mime_magic_module libexec/apache24/mod_mime_magic.so #LoadModule cern_meta_module libexec/apache24/mod_cern_meta.so LoadModule expires_module libexec/apache24/mod_expires.so LoadModule headers_module libexec/apache24/mod_headers.so #LoadModule usertrack_module libexec/apache24/mod_usertrack.so #LoadModule unique_id_module libexec/apache24/mod_unique_id.so LoadModule setenvif_module libexec/apache24/mod_setenvif.so LoadModule version_module libexec/apache24/mod_version.so #LoadModule remoteip_module libexec/apache24/mod_remoteip.so #LoadModule proxy_module libexec/apache24/mod_proxy.so #LoadModule proxy_connect_module libexec/apache24/mod_proxy_connect.so #LoadModule proxy_ftp_module libexec/apache24/mod_proxy_ftp.so #LoadModule proxy_http_module libexec/apache24/mod_proxy_http.so #LoadModule proxy_fcgi_module libexec/apache24/mod_proxy_fcgi.so #LoadModule proxy_scgi_module libexec/apache24/mod_proxy_scgi.so #LoadModule proxy_uwsgi_module libexec/apache24/mod_proxy_uwsgi.so #LoadModule proxy_fdpass_module libexec/apache24/mod_proxy_fdpass.so #LoadModule proxy_wstunnel_module libexec/apache24/mod_proxy_wstunnel.so #LoadModule proxy_ajp_module libexec/apache24/mod_proxy_ajp.so #LoadModule proxy_balancer_module libexec/apache24/mod_proxy_balancer.so #LoadModule proxy_express_module libexec/apache24/mod_proxy_express.so #LoadModule proxy_hcheck_module libexec/apache24/mod_proxy_hcheck.so #LoadModule session_module libexec/apache24/mod_session.so #LoadModule session_cookie_module libexec/apache24/mod_session_cookie.so #LoadModule session_crypto_module libexec/apache24/mod_session_crypto.so #LoadModule session_dbd_module libexec/apache24/mod_session_dbd.so #LoadModule slotmem_shm_module libexec/apache24/mod_slotmem_shm.so #LoadModule slotmem_plain_module libexec/apache24/mod_slotmem_plain.so LoadModule ssl_module libexec/apache24/mod_ssl.so #LoadModule dialup_module libexec/apache24/mod_dialup.so #LoadModule http2_module libexec/apache24/mod_http2.so #LoadModule proxy_http2_module libexec/apache24/mod_proxy_http2.so #LoadModule lbmethod_byrequests_module libexec/apache24/mod_lbmethod_byrequests.so #LoadModule lbmethod_bytraffic_module libexec/apache24/mod_lbmethod_bytraffic.so #LoadModule lbmethod_bybusyness_module libexec/apache24/mod_lbmethod_bybusyness.so #LoadModule lbmethod_heartbeat_module libexec/apache24/mod_lbmethod_heartbeat.so LoadModule unixd_module libexec/apache24/mod_unixd.so #LoadModule heartbeat_module libexec/apache24/mod_heartbeat.so #LoadModule heartmonitor_module libexec/apache24/mod_heartmonitor.so #LoadModule dav_module libexec/apache24/mod_dav.so LoadModule status_module libexec/apache24/mod_status.so LoadModule autoindex_module libexec/apache24/mod_autoindex.so #LoadModule asis_module libexec/apache24/mod_asis.so #LoadModule info_module libexec/apache24/mod_info.so LoadModule suexec_module libexec/apache24/mod_suexec.so <IfModule !mpm_prefork_module> #LoadModule cgid_module libexec/apache24/mod_cgid.so </IfModule> <IfModule mpm_prefork_module> #LoadModule cgi_module libexec/apache24/mod_cgi.so </IfModule> #LoadModule dav_fs_module libexec/apache24/mod_dav_fs.so #LoadModule dav_lock_module libexec/apache24/mod_dav_lock.so #LoadModule vhost_alias_module libexec/apache24/mod_vhost_alias.so #LoadModule negotiation_module libexec/apache24/mod_negotiation.so LoadModule dir_module libexec/apache24/mod_dir.so #LoadModule imagemap_module libexec/apache24/mod_imagemap.so #LoadModule actions_module libexec/apache24/mod_actions.so #LoadModule speling_module libexec/apache24/mod_speling.so #LoadModule userdir_module libexec/apache24/mod_userdir.so LoadModule alias_module libexec/apache24/mod_alias.so LoadModule rewrite_module libexec/apache24/mod_rewrite.so #Scom needed LoadModule wsgi_module /usr/local/libexec/apache24/mod_wsgi.so #LoadModule php_module /usr/local/libexec/apache24/libphp.so #LoadModule php7_module libexec/apache24/libphp7.so LoadModule php_module libexec/apache24/libphp.so # Third party modules IncludeOptional apache2/conf/modules.d/[0-9][0-9][0-9]_*.conf Current apache build Config : # cat currentconfig gmake clean ./configure \ --sysconfdir=/usr/local/apache2/conf \ --without-brotli \ --with-nghttp2=/usr/local \ --with-ssl=/usr/local \ --disable-v4-mapped \ --without-lua \ --with-mpm=worker \ --enable-mpms-shared=all \ --with-nghttp2=/usr/local \ --with-ssl=/usr/local \ --enable-so \ --prefix=/usr/local \ --enable-layout=FreeBSD \ --enable-http \ --with-pcre=/usr/local \ --with-apr=/usr/local/bin/apr-1-config \ --with-apr-util=/usr/local/bin/apu-1-config \ --enable-access-compat=shared \ --enable-actions=shared \ --enable-alias=shared \ --enable-allowmethods=shared \ --enable-asis=shared \ --enable-authn-anon=shared \ --enable-authn-core=shared \ --enable-authn-dbd=shared \ --enable-authn-dbm=shared \ --enable-authn-file=shared \ --enable-authn-socache=shared \ --enable-authz-core=shared \ --enable-authz-dbd=shared \ --enable-authz-dbm=shared \ --enable-authnz-fcgi=shared \ --enable-authz-groupfile=shared \ --enable-authz-host=shared \ --enable-authz-owner=shared \ --enable-authz-user=shared \ --enable-auth-basic=shared \ --enable-auth-digest=shared \ --enable-auth-form=shared \ --enable-autoindex=shared \ --enable-buffer=shared \ --enable-cache=shared \ --enable-cache-disk=shared \ --enable-cache-socache=shared \ --enable-cern-meta=shared \ --enable-cgi=shared --enable-cgid=shared \ --enable-charset-lite=shared \ --enable-data=shared \ --enable-dav=shared \ --enable-dav-fs=shared \ --enable-dav-lock=shared \ --enable-dbd=shared \ --enable-deflate=shared \ --enable-dialup=shared \ --enable-dir=shared \ --enable-dumpio=shared \ --enable-env=shared \ --enable-expires=shared \ --enable-ext-filter=shared \ --enable-file-cache=shared \ --enable-filter=shared \ --enable-headers=shared \ --enable-heartbeat=shared \ --enable-heartmonitor=shared \ --enable-http2=shared \ --enable-imagemap=shared \ --enable-include=shared \ --enable-info=shared \ --enable-lbmethod-bybusyness=shared \ --enable-lbmethod-byrequests=shared \ --enable-lbmethod-bytraffic=shared \ --enable-lbmethod-heartbeat=shared \ --enable-logio=shared \ --enable-log-debug=shared \ --enable-log-forensic=shared \ --enable-macro=shared \ --enable-mime=shared \ --enable-mime-magic=shared \ --enable-negotiation=shared \ --enable-ratelimit=shared \ --enable-reflector=shared \ --enable-remoteip=shared \ --enable-reqtimeout=shared \ --enable-request=shared \ --enable-rewrite=shared \ --enable-sed=shared \ --enable-setenvif=shared \ --enable-slotmem-plain=shared \ --enable-slotmem-shm=shared \ --enable-socache-dbm=shared \ --enable-socache-memcache=shared \ --enable-socache-shmcb=shared \ --enable-speling=shared \ --enable-ssl=shared \ --enable-status=shared \ --enable-substitute=shared \ --enable-unique-id=shared \ --enable-userdir=shared \ --enable-usertrack=shared \ --enable-version=shared \ --enable-vhost-alias=shared \ --enable-watchdog=shared \ --enable-xml2enc=shared \ --disable-authnz-ldap \ --disable-brotli \ --disable-ident \ --disable-ldap \ --disable-lua \ --disable-md \ --disable-socache-dc \ --disable-socache-redis \ --enable-suexec \ --enable-proxy-ajp=shared \ --enable-proxy-balancer=shared \ --enable-proxy-connect=shared \ --enable-proxy-express=shared \ --enable-proxy-fcgi=shared \ --enable-proxy-http2=shared \ --enable-proxy-fdpass=shared \ --enable-proxy-ftp=shared \ --enable-proxy-hcheck=shared \ --enable-proxy-html=shared \ --enable-proxy-http=shared \ --enable-proxy-scgi=shared \ --enable-proxy-uwsgi=shared \ --enable-proxy-wstunnel=shared \ --enable-session-cookie=shared \ --enable-session-crypto=shared \ --enable-session-dbd=shared \ --disable-bucketeer \ --disable-case-filter \ --disable-case-filter-in \ --disable-echo \ --disable-example-hooks \ --disable-example-ipc \ --disable-optional-fn-export \ --disable-optional-fn-import \ --disable-optional-hook-export \ --disable-optional-hook-import \ --enable-proxy=shared \ --enable-session=shared \ --with-libxml2=/usr/local/include/libxml2 \ --prefix=/usr/local \ --localstatedir=/var \ --mandir=/usr/local/man \ --infodir=/usr/local/share/info/ \ --build=amd64-portbld-freebsd12.1 26175 - Ss 0:01.55 php-fpm: master process (/usr/local/etc/php-fpm.conf) (php-fpm) 26179 - I 0:00.00 php-fpm: pool www (php-fpm) 26180 - I 0:00.00 php-fpm: pool www (php-fpm) Warning: file_exists(): open_basedir restriction in effect. File(/data/www/team.22Racing.ca/wp-config.php) is not within the allowed path(s): (/data/www/team.22Racing.ca/tmp/) in /data/www/team.22Racing.ca/wp-load.php on line 47 Warning: Cannot modify header information - headers already sent by (output started at /data/www/team.22Racing.ca/wp-load.php:47) in /data/www/team.22Racing.ca/wp-load.php on line 79 running latest version of wordpress, plugins etc ? apache config as follows :

…

_______________________________________________________________________ <VirtualHost *:80> ServerName team.22automotive.ca ServerAlias team.22automotive.ca ServerAlias 22automotive.scom.ca DocumentRoot /data/www/team.22Automotive.ca SuexecUserGroup www www <IfModule mod_security.c> SecFilterEngine Off SecFilterScanPOST Off </IfModule> <Directory "/data/www/team.22Automotive.ca/wp-content/uploads/"> <Files "*.php"> Order Deny,Allow Deny from All </Files> </Directory> <Directory /data/www/team.22Automotive.ca> php_admin_value open_basedir "/data/www/team.22Automotive.ca/:/usr/local/share/pear/:/var/log/" </Directory> <Directory /data/www/team.22Automotive.ca> php_admin_value sys_temp_dir /data/www/team.22Automotive.ca/tmp/ </Directory> <Directory /data/www/team.22Automotive.ca> php_admin_value session.save_path /data/www/team.22Automotive.ca/tmp/ </Directory> <Directory /data/www/team.22Automotive.ca> php_admin_value soap.wsdl_cache_dir /data/www/team.22Automotive.ca/tmp/ </Directory> <Directory /data/www/team.22Automotive.ca> php_admin_value upload_tmp_dir /data/www/team.22Automotive.ca/tmp </Directory> <Directory "/data/www/team.22Automotive.ca"> AllowOverride All php_value session.save_path "/data/www/team.22Automotive.ca/" </Directory> </VirtualHost>

______________________________________________________________________ Have A Happy Sunday !!! Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.) Scom.ca Internet Services <http://www.scom.ca> 004-1009 Byron Street South Whitby, Ontario - Canada L1N 4S3 Toronto 416.642.7266 Main 1.866.411.7266 Fax 1.888.892.7266 ***@***.***

On 1/23/2024 7:33 AM, David CARLIER wrote: Note that the whole php 7.x serie is no longer supported. Do you have the possibility to upgrade to a php 8.1/8.2 at least ? — Reply to this email directly, view it on GitHub <#13226 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AO6L5WLG4YZFXNC5DZZZBPLYP6U3NAVCNFSM6AAAAABCG3B54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMBVHE3DMNJTGQ>. You are receiving this because you authored the thread.Web Bug from https://github.com/notifications/beacon/AO6L5WN3QFZFF5UGXATAREDYP6U3NA5CNFSM6AAAAABCG3B54SWGG33NNVSW45C7OR4XAZNMJFZXG5LFINXW23LFNZ2KUY3PNVWWK3TUL5UWJTTRTK64M.gifMessage ID: ***@***.***> [ { ***@***.***": "http://schema.org", ***@***.***": "EmailMessage", "potentialAction": { ***@***.***": "ViewAction", "target": "#13226 (comment)", "url": "#13226 (comment)", "name": "View Issue" }, "description": "View this Issue on GitHub", "publisher": { ***@***.***": "Organization", "name": "GitHub", "url": "https://github.com" } } ] -- This message has been scanned for viruses and dangerous content by *MailScanner* <http://www.mailscanner.info/>, and is believed to be clean.

[bukka]

It looks like something in your application setting open_basedir to subdirectory. You can check the current value by printing ini_get('open_basedir'). I don't think this is a bug in PHP. If you still think it is, then please provide a short script showing the issue with all configuration in effect.