[#13039] DNS lib should not have to read /etc/resolv.conf
Summary DNS lib should not have to read /etc/resolv.conf
Queue Horde Framework Packages
Queue Version Git master
Type Enhancement
State Rejected
Priority 1. Low
Owners
Requester software-horde@interfasys.ch
Created 2014-03-12 (2311 days ago)
Due
Updated 2015-09-29 (1745 days ago)
Assigned
Resolved 2014-03-12 (2311 days ago)
Milestone
Patch No

Comments
software-horde@interfasys.ch 2014-03-12 11:13:22
I've found this in my debug logs:
2014-03-12T11:02:49+00:00 WARN: HORDE [turba] PHP ERROR: 
is_readable(): open_basedir restriction in effect. 
File(/etc/resolv.conf) is not within the allowed path(s) [pid 49217 on 
line 15 of "/usr/local/php/lib/php/Horde/Core/Factory/Dns.php"]

Since this is only a warning, I'm assuming Turba is using a different 
mechanism to resolve domain names, but wouldn't it be possible to set 
the safer way as the standard behaviour?

Jan Schneider <jan@horde.org> 2014-03-12 12:10:09
There is nothing unsafe about using resolv.conf if it's available.

robert.kovacs.it@gmail.com 2015-09-29 08:21:35
> There is nothing unsafe about using resolv.conf if it's available.

The question is not if it's safe or unsafe.
The issue is that there is an open_basedir definition for php that 
limits access to certain directories while
Dns.php wants to access /etc/resolv.conf.

Please read https://bugzilla.redhat.com/show_bug.cgi?id=1022577

cheers,
Robert

arjen+horde@de-korte.org 2015-09-29 08:54:56
Horde doesn't set

php_admin_value open_basedir
"/usr/share/horde:/etc/horde:/usr/share/pear:/tmp:/usr/share/php"

Whoever bundled Horde with this needs to fix this to allow access to 
this file. This is not something the Horde developers can fix. As 
stated before, there is nothing unsafe about accessing this file.