On Tue, Mar 27, 2012 at 8:45 AM, Pierre Joye <pierre....@gmail.com> wrote:
> hi, > hi, > > On Tue, Mar 27, 2012 at 8:38 AM, Clint Byrum <cl...@ubuntu.com> wrote: > > > I think the lesson here is to get the necessary bits from Suhosin into > > PHP's core so that users can feel safe when using stock PHP, rather > > than needing to wait for the good and generous folks at the hardened > > PHP project to catch up. > > I disagree. The lesson here is that the Ubuntu's security team should > have discussed with us to see what are actually their worries instead > of not following what is actually a good move for everyone. > Why? It is common practice to avoid .0 releases, including those from PHP :) Actually, this is not a bad thing at all. It makes sure lots of PHP projects and Frameworks stays on 5.3 as a common base for the next 1-3 years, introp wise that is a good thing. And those that want the extra 5.4 stuff can get it somehow anyway, and as part of the distro in 7 months. > > Cheers, > -- > Pierre > > @pierrejoye | http://blog.thepimp.net | http://www.libgd.org >
