-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello,
I've recently upgraded PHP on some systems of mine to PHP 5.2.1-r3 and
encountered an issue of which I think that it is a bug in PHP. That
issue will prevent any users from logging in rendering OMA unusable.
Thus I'd like to recommend you not to upgrade your PHP version if
everything is (currently) working fine.
PHP 5.2.1 does seem not to catch exceptions thrown in static methods,
such as in:
try {
$authinfo = User::authenticate($x, $y); // will throw
// do something
} catch (Exception $e) { // should catch but does not
$login_error = $e->getMessage();
// do another thing
}
... will lead in uncaught exception.
In OMA that will be an uncaught exception risen in inc/lib/User.php on
line 87 at authentication.
This won't affect security as nobody can do anything beyond that.
Gruß
W-Mark Kubacki
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFF9We5c6mxnMr609YRAsEsAJwKaHwFBLYF+QauzEpz3JMq3IqciwCfWEE8
Mr7k2TjAO59yV/WKAqNkObQ=
=iwAn
-----END PGP SIGNATURE-----
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Openmailadmin" group.
To post to this group, send email to openmailadmin@googlegroups.com
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.de/group/openmailadmin?hl=en
-~----------~----~----~----~------~----~------~--~---
