r114324 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r114323‎ \| r114324 \| r114325 >
Date:	22:58, 20 March 2012
Author:	dantman
Status:	ok
Tags:
Comment:	Security paranoia, reject requests to router.php that aren't from the cli-server sapi.
Modified paths:	/trunk/phase3/maintenance/dev/includes/router.php (modified) (history)

Diff [purge]

Index: trunk/phase3/maintenance/dev/includes/router.php
—	—	@@ -3,6 +3,10 @@
4	4	# Router for the php cli-server built-in webserver
5	5	# http://ca2.php.net/manual/en/features.commandline.webserver.php
6	6
	7	+if ( php_sapi_name() != 'cli-server' ) {
	8	+ die( "This script can only be run by php's cli-server sapi." );
	9	+}
	10	+
7	11	ini_set('display_errors', 1);
8	12	error_reporting(E_ALL);
9	13

Follow-up revisions

Revision	Commit summary	Author	Date
r114325	Backport r114324 to 1.19 so we don't end up releasing a version of MediaWiki ...	dantman	23:01, 20 March 2012

Status & tagging log

23:02, 20 March 2012 Aaron Schulz (talk | contribs) changed the status of r114324 [removed: new added: ok]