PHP Sandbox: Execute external PHP scripts in a separate process

Recommend this page to a friend!

Download

Info

Files

Install with Composer

Download

Reputation

Support forum

Blog

Links

Ratings				Unique User Downloads		Download Rankings
61%				Total: 787		All time: 4,330 This week: 40

Version		License		PHP version		Categories
`php-sandbox` 1		GNU Lesser Genera...		5.2		PHP 5, Language

Description

Author

Paul Fryer

This class can execute external PHP scripts in a separate process.

It uses PHP CLI version to execute a given external scripts as a separate process, so if it fails the calling script does not fail too.

The class provides options to change the root file system path before executing, pass GET, POST, COOKIE and SESSION variables, as well other PHP options like display_errors, memory_limit, max_execution_time, disable_functions, etc..

Innovation Award

July 2011
Number 2

Prize: One subscription to the PDF edition of the PHP Architect magazine

Sometimes you may need to execute PHP scripts from third parties that you may not be able to trust, as such scripts can do something harmful.

This class provides a clever solution to execute untrusted PHP scripts by running them with the PHP cli program as a separate process.

It passes a separate set of values to request variables and changes the root of the file system, so the untrusted scripts do not have access to privileged information.

Clever approach to execute untrusted PHP scripts securely.

Manuel Lemos

Paul Fryer

Name:	Paul Fryer `<contact>`
Classes:	1 package by Paul Fryer
Country:	United Kingdom
Age:	???
All time rank:	2682	124 in United Kingdom
Week rank:	195	9 in United Kingdom

Innovation award

Nominee: 1x

Details

PHPSandbox

A way to run external scripts from your core PHP files.
Allows for running non-trusted PHP from with in your main PHP application.
Allows the main script to continue should a fatal error occour in your incuded code.
Supports:
	Function restrictions
	Enviroment obscurification
	Sessions
	Passing GET and POST param's
	INI settings protection
	Run's as a seperate process to protect the parent PHP script from crashs
	Prevent's interaction with the parent PHP
	
	
Requirements:
PHP 5.2+ (Only tested in PHP 5.3 currently)
PHP CLI

Notes:
Only currently tested under Linux and OSX

Files (12)

File	Role	Description
`samples` (6 files)
`COPYING`	Lic.	Copyright Information LGPL
`COPYING.LESSER`	Lic.	LGPL
`example.php`	Example	Example usage files
`phpsandbox-prepend.php`	Aux.	An auto prepend file to configure the enviroment
`phpsandbox.php`	Class	The main class
`README`	Doc.	README file

Files (12)

samples

File	Role	Description
`invalid.php`	Data	Invalid PHP file to fail lint test
`malicious.php`	Data	A sample malicious PHP file
`recon.php`	Data	An enviroment based PHP reconisence script
`slow.php`	Data	A sample script that runs longer than the time limit
`trusted.php`	Data	A trusted PHP script
`valid.php`	Data	A sample valid PHP file

The PHP Classes site has supported package installation using the Composer tool since 2013, as you may verify by reading this instructions page.

Install with Composer

	php-sandbox-2011-08-01.zip 25KB
	php-sandbox-2011-08-01.tar.gz 22KB
	Install with Composer

Version Control

Unique User Downloads

Download Rankings

Total:	787
This week:	0

All time:	4,330
This week:	40

User Ratings

	All time
Utility:	81%
Consistency:	75%
Documentation:	68%
Examples:	68%
Tests:	-
Videos:	-
Overall:	61%
Rank:	994

Applications that use this package

No pages of applications that use this class were specified.

If you know an application of this package, send a message to the author to add a link here.

About us

Advertise on this site

For more information send a message to info at phpclasses dot org.