Well from the sound of it, it's a quick painless process to upgrade php to
the newest version using the patch. Can anyone that has done it comment on
the complexities of the upgrade? Im just going on what it says on the php
"When you walk to the edge of all the light you have and take that first
step into the darkness of the unknown you must believe that one of two
things will happen:
There will be something solid for you to stand upon or, you will be taught
how to fly." - Patrick Overton
> From: Greg Donald <[EMAIL PROTECTED]>
> Date: Mon, 22 Jul 2002 12:30:50 -0500 (CDT)
> To: [EMAIL PROTECTED]
> Subject: Re: [PHP] PHP Security Advisory: Vulnerability in PHP versions 4.2.0
> and 4.2.1
> On 22 Jul 2002, Adam Voigt wrote:
>> Hey man, if you can't stand the heat, get out of the freakin sun.
>> Atleast PHP tells you about holes, not like Microsoft who will fix it
>> six months down the line (if they even admit a hole exists). Plus, if
> Who said anything about M$? I don't use their crappy products so I
> don't have to deal with their security issues.
>> your running anything past 4.1.2 on production systems, it's your own
>> damn fault because several times it has been said that the 4.2 series
>> wasn't considered safe for production use. And by the way, don't want to
> If PHP 4.2 is unsafe then why is it listed at the top of the page for
> download? There is not a shread of text saying do not use in production,
> no unsafe warnings whatsoever. How am I supposed to magically find the
> 'do not use' warnings?
>> use PHP anymore because of this? Then don't. PHP doesn't need you, the
>> rest of the people who can handle an update without whining will be
> It's not about that.. It's about the hell I've already been through with
> the new register_globals setting. Then two huge ass security holes
> following in the next couple of months after that.
> If it doesn't bother you the hassles 'the php group' is putting me, you,
> and alot of others through then I guess that's just you. I can't
> help but get pissed about it. I did not have the time to do these
> upgrades, but now I have to make time.
> Greg Donald
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php