Re: PHP 4.1.2

To: debian-isp@lists.debian.org
Subject: Re: PHP 4.1.2
From: Michael Loftis <mloftis@modwest.com>
Date: Wed, 22 Dec 2004 12:41:31 -0700
Message-id: <0EFEA94BDD87C4022EE8790A@[10.1.2.77]>
In-reply-to: <[🔎] 07aa01c4e834$abc47960$d400a8c0@tw1>
References: <[🔎] 108f01c4e80d$b1451510$0900a8c0@SYSTEM9> <[🔎] 41C95686.8080807@digitalfuture.it> <[🔎] 81cd136b04122204281c54266f@mail.gmail.com> <[🔎] 07aa01c4e834$abc47960$d400a8c0@tw1>

--On Wednesday, December 22, 2004 22:42 +0800 Jason Lim<maillist@jasonlim.com> wrote:

Just read all that... not particularly encouraging, as it seems no one is
interested in backporting the security fixes or that it is not possible to
backport them.

I heard there are some kind of mod_rewrite rules to temporarily resolve
this in the mean time posted in BUGTRAQ or similar. Do you run any way of
mitigating the security threat in the mean time?

FWIW I run the backports.org version of PHP4 pretty much everywhere,including the hosting company I work for. We roll our own packages (weneed modules like PayFlowPro which they don't include) but other than thatit's the same package you'd get from www.backports.org -- good project,quite a few packages.

sounds like that particular developer just has a thing against PHP BTW, sotake his words for a grain of salt. I'm not very fond of PHP or MySQLeither, but it pays the bills because a lot of other people are. justbecause he/she is a debian developer does NOT mean they speak for the wholeproject.

Reply to:

References:
- PHP 4.1.2
  - From: "Jason Lim" <maillist@jasonlim.com>
- Re: PHP 4.1.2
  - From: aCaB <acabng@digitalfuture.it>
- Re: PHP 4.1.2
  - From: Chad Adlawan <tsadi.a@gmail.com>
- Re: PHP 4.1.2
  - From: "Jason Lim" <maillist@jasonlim.com>

Prev by Date: Re: PHP 4.1.2
Next by Date: Re: PHP 4.1.2
Previous by thread: Re: PHP 4.1.2
Next by thread: Re: PHP 4.1.2
Index(es):
- Date
- Thread