From 645b9196fc71864effe0048980071632882a3c2b Mon Sep 17 00:00:00 2001
From: Andrew McMillan <andrew@morphoss.com>
Date: Sat, 11 Sep 2010 23:07:29 +1200
Subject: [PATCH] [setup] Detect whether suhosin.server.strip is set and
 discourage it.

I sanitise the path just fine and I like being able to have arbitrary
paths, and don't want non-alphabetic stuff turned into a question mark.
---
 htdocs/setup.php | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/htdocs/setup.php b/htdocs/setup.php
index 205946f1..df73aba2 100644
--- a/htdocs/setup.php
+++ b/htdocs/setup.php
@@ -40,6 +40,17 @@ function check_gettext() {
   return isset($loaded_extensions['gettext']);
 }
 
+function check_suhosin_server_strip() {
+  global $phpinfo, $loaded_extensions;
+
+  if ( !isset($loaded_extensions['suhosin']) ) return true;
+  if ( ini_get('suhosin.server.strip') == "0" ) {
+    return true;
+  }
+
+  return false;
+}
+
 include("interactive-page.php");
 include("page-header.php");
 
@@ -100,7 +111,8 @@ $dependencies = array(
   translate('PHP PDO module available') => 'check_pdo',
   translate('PDO PostgreSQL drivers') => 'check_pdo_pgsql',
   translate('PHP PostgreSQL available') => 'check_pgsql',
-  translate('GNU gettext support') => 'check_gettext' /*,
+  translate('GNU gettext support') => 'check_gettext',
+  translate('Suhosin "server.strip" disabled') => 'check_suhosin_server_strip' /*,
   'YAML' => 'php5-syck' */
 );