Hi! On 7/17/11 6:32 PM, Philip Olson wrote:
there been a proper discussion or RFC on this topic for 5.4. The vote was premature. Would it have turned out differently had we done it properly? Probably, but at least we'd have a proper reference point for why we removed a security feature that was still enabled by default.
Magic quotes isn't a security feature. It's a pseudo-security misfeature. That's exactly why it needs to be gone.
And to be clear, I am not arguing for or against its removal, but rather, am arguing against how it was handled. Throwing 10 separate topics (some with and without RFCs) into one thread is a recipe for non-discussion. That's what happened here, with magic quotes removal being a part of it.
Nobody prevented anybody from discussing any topic, and removal of magic quotes was on the agenda since forever. If it's too hard to look at todo page and read the RFC emails on the list - no problem, but I don't see what else can be done. If there wasn't enough discussion, maybe because not enough people cared to discuss it.
-- Stanislav Malyshev, Software Architect SugarCRM: http://www.sugarcrm.com/ (408)454-6900 ext. 227 -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
