From 6fe3815271a50329a2ba0aa492bb2c9a9820b962 Mon Sep 17 00:00:00 2001
From: jvoisin
Date: Sun, 24 Mar 2024 17:40:27 +0100
Subject: Fix yet another php surprised-rename of functions parameters

---
 config/default_php8.rules | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/config/default_php8.rules b/config/default_php8.rules
index 580ba0a..98cc0db 100644
--- a/config/default_php8.rules
+++ b/config/default_php8.rules
@@ -39,7 +39,9 @@ sp.disable_function.function("chmod").param("permissions").value("438").drop();
 sp.disable_function.function("chmod").param("permissions").value("511").drop();
 
 # Prevent various `mail`-related vulnerabilities
-sp.disable_function.function("mail").param("additional_parameters").value_r("\\-").drop();
+# Uncommend the second rule if you're using php8.3+
+#sp.disable_function.function("mail").param("additional_parameters").value_r("\\-").drop();
+#sp.disable_function.function("mail").param("additional_params").value_r("\\-").drop();
 
 # Since it's now burned, me might as well mitigate it publicly
 sp.disable_function.function("putenv").param("assignment").value_r("LD_").drop()
-- 
cgit v1.3