Documentation is available at gid.php
- <?php
- /**
- * Test class for GID
- *
- * @package PhpSecInfo
- * @author Ed Finkler <coj@funkatron.com>
- */
- /**
- * require the PhpSecInfo_Test_Core class
- */
- require_once('PhpSecInfo/Test/Test_Core.php');
- /**
- * the minimum "safe" UID that php should be executing as. This can vary,
- * but in general 100 seems like a good min.
- *
- */
- define ('PHPSECINFO_MIN_SAFE_GID', 100);
- /**
- * Test class for GID
- *
- * @package PhpSecInfo
- */
- class PhpSecInfo_Test_Core_Gid extends PhpSecInfo_Test_Core
- {
- /**
- * This should be a <b>unique</b>, human-readable identifier for this test
- *
- * @var string
- */
- var $test_name = "group_id";
- var $recommended_value = PHPSECINFO_MIN_SAFE_GID;
- /**
- * This test only works under Unix OSes
- *
- * @return boolean
- */
- function isTestable() {
- if ($this->osIsWindows()) {
- return false;
- } elseif ($this->getUnixId() === false) {
- $this->setMessageForResult(PHPSECINFO_TEST_RESULT_NOTRUN, 'en', 'Functions required to retrieve group ID not available');
- return false;
- }
- return true;
- }
- function _retrieveCurrentValue() {
- $id = $this->getUnixId();
- if (is_array($id)) {
- $lowest_gid = key($id['groups']);
- $this->current_value = $lowest_gid;
- } else {
- $this->current_value = false;
- }
- }
- /**
- * Checks the GID of the PHP process to make sure it is above PHPSECINFO_MIN_SAFE_GID
- *
- * @see PHPSECINFO_MIN_SAFE_GID
- */
- function _execTest() {
- if ($this->current_value >= $this->recommended_value) {
- return PHPSECINFO_TEST_RESULT_OK;
- }
- return PHPSECINFO_TEST_RESULT_WARN;
- }
- /**
- * Set the messages specific to this test
- *
- */
- function _setMessages() {
- parent::_setMessages();
- $this->setMessageForResult(PHPSECINFO_TEST_RESULT_OK, 'en', 'PHP is executing as what is probably a non-privileged group');
- $this->setMessageForResult(PHPSECINFO_TEST_RESULT_WARN, 'en', 'PHP may be executing as a "privileged" group, which could be a serious security vulnerability.');
- $this->setMessageForResult(PHPSECINFO_TEST_RESULT_NOTRUN, 'en', 'This test will not run on Windows OSes');
- }
- }
Documentation generated on Fri, 06 Apr 2007 13:32:13 -0400 by phpDocumentor 1.3.0RC3