ini_set('session.auto_start', 0); // Prevent error to use session_start() if it's active in php.ini ini_set('session.use_trans_sid', 0); ini_set('url_rewriter.tags', ''); // // Start the PHP session // PMF_Init::cleanRequest(); session_start(); // // Connect to LDAP server, when LDAP support is enabled // if ($faqConfig->get('security.ldapSupport') && file_exists(PMF_CONFIG_DIR . '/ldap.php') && extension_loaded('ldap')) { require PMF_CONFIG_DIR . '/constants_ldap.php'; require PMF_CONFIG_DIR . '/ldap.php'; $faqConfig->setLdapConfig($PMF_LDAP); } else { $ldap = null; } // // Build attachments path // $confAttachmentsPath = trim($faqConfig->get('records.attachmentsPath')); if ('/' == $confAttachmentsPath[0] || preg_match('%^[a-z]:(\\\\|/)%i', $confAttachmentsPath)) { // If we're here, some windows or unix style absolute path was detected. define('PMF_ATTACHMENTS_DIR', $confAttachmentsPath); } else { // otherwise build the absolute path $tmp = dirname(__DIR__) . DIRECTORY_SEPARATOR . $confAttachmentsPath; // Check that nobody is traversing if (0 === strpos((string) $tmp, dirname(__DIR__))) {