[#13039] DNS lib should not have to read /etc/resolv.conf
Summary DNS lib should not have to read /etc/resolv.conf
Queue Horde Framework Packages
Queue Version Git master
Type Enhancement
State Rejected
Priority 1. Low
Requester software-horde@interfasys.ch
Created 2014-03-12 (2311 days ago)
Updated 2015-09-29 (1745 days ago)
Resolved 2014-03-12 (2311 days ago)
Patch No

software-horde@interfasys.ch 2014-03-12 11:13:22
I've found this in my debug logs:
2014-03-12T11:02:49+00:00 WARN: HORDE [turba] PHP ERROR: 
is_readable(): open_basedir restriction in effect. 
File(/etc/resolv.conf) is not within the allowed path(s) [pid 49217 on 
line 15 of "/usr/local/php/lib/php/Horde/Core/Factory/Dns.php"]

Since this is only a warning, I'm assuming Turba is using a different 
mechanism to resolve domain names, but wouldn't it be possible to set 
the safer way as the standard behaviour?

Jan Schneider <jan@horde.org> 2014-03-12 12:10:09
There is nothing unsafe about using resolv.conf if it's available.

robert.kovacs.it@gmail.com 2015-09-29 08:21:35
> There is nothing unsafe about using resolv.conf if it's available.

The question is not if it's safe or unsafe.
The issue is that there is an open_basedir definition for php that 
limits access to certain directories while
Dns.php wants to access /etc/resolv.conf.

Please read https://bugzilla.redhat.com/show_bug.cgi?id=1022577


arjen+horde@de-korte.org 2015-09-29 08:54:56
Horde doesn't set

php_admin_value open_basedir

Whoever bundled Horde with this needs to fix this to allow access to 
this file. This is not something the Horde developers can fix. As 
stated before, there is nothing unsafe about accessing this file.