Hi Stas,
> -Original Message-
> From: Stanislav Malyshev [mailto:smalys...@gmail.com]
> Sent: Tuesday, December 1, 2015 12:21 AM
> To: Nikita Popov ; PHP internals
> ; Anatol Belski ; Remi Collet
>
> Subject: Re: [PHP-DEV] HashDos protection
>
> Hi!
>
> > To fix the HashDos vulnerabilit
Hi!
> To fix the HashDos vulnerability for *all* cases (rather than just GET/POST
> parsing), I propose to introduce collision counting during hashtable
> insertion operations. This will throw a fatal error if the number of
> collisions during an insertion operation exceed a certain threshold.
>
Maintaining and translating documentation, core development
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
> PHP's certs are also "broken" for
> svn.php.net and edit.php.net, there are browser warnings because of the
> SHA1 certificate signatures.
>
those are separate issues, already reported on syst...@php.net
these kind of problems are either reported there via email or on
https://bugs.php.net/ under
Hey:
> On Nov 30, 2015, at 22:48, Rowan Collins wrote:
>
> Andreas Heigl wrote on 30/11/2015 12:23:
>>> Am 30.11.15 um 13:18 schrieb Peter Cowburn:
>>> class A {
const TEST = false;
public function test() {
var_dump(static::TEST);
}
}
class
Andreas Heigl wrote on 30/11/2015 12:23:
Am 30.11.15 um 13:18 schrieb Peter Cowburn:
class A {
const TEST = false;
public function test() {
var_dump(static::TEST);
}
}
class B extends A {
const TEST = true;
public function test() {
A::test();
}
On 30 November 2015 at 13:58, Pascal KISSIAN
wrote:
> >De : Nikita Popov [mailto:nikita@gmail.com]
> >Envoyé : dimanche 29 novembre 2015 12:45
> >À : Pascal KISSIAN
> >Cc : PHP internals
> >Objet : Re: HashDos protection
>
> >Collisions in DJBX33A are (integer overflow notwithstanding) comple
2015-11-30 14:49 GMT+01:00 Chris Riley :
> Anyone else getting an invalid cert on https://pear.php.net ?
>
Yes and it points to cweiske.de. PHP's certs are also "broken" for
svn.php.net and edit.php.net, there are browser warnings because of the
SHA1 certificate signatures.
>De : Nikita Popov [mailto:nikita@gmail.com]
>Envoyé : dimanche 29 novembre 2015 12:45
>À : Pascal KISSIAN
>Cc : PHP internals
>Objet : Re: HashDos protection
>Collisions in DJBX33A are (integer overflow notwithstanding) completely
>independent of the starting value, so randomizing it wouldn
Hi:
> Anyone else getting an invalid cert on https://pear.php.net ?
The pear webserver died. Christian Weiske is doing the move. He's
temporarily using his cert.
Thanks for the heads up.
--Dan
--
T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y
data intensive
Anyone else getting an invalid cert on https://pear.php.net ?
> Am 30.11.2015 um 13:23 schrieb Andreas Heigl :
>
> Am 30.11.15 um 13:18 schrieb Peter Cowburn:
>> class A {
>>>const TEST = false;
>>>public function test() {
>>>var_dump(static::TEST);
>>>}
>>> }
>>>
>>> class B extends A {
>>>const TEST = true;
>>>
>>>public funct
Am 30.11.15 um 13:18 schrieb Peter Cowburn:
> class A {
>> const TEST = false;
>> public function test() {
>> var_dump(static::TEST);
>> }
>> }
>>
>> class B extends A {
>> const TEST = true;
>>
>> public function test() {
>> A::test();
>> }
>> }
>>
>> $b = n
On 30 November 2015 at 12:16, Peter Cowburn wrote:
> Hi internals,
>
> I'm looking for some feedback on a change with regard to static::, which
> has been present throughout the 7 branch.
>
> Have a look-see at https://bugs.php.net/bug.php?id=70997
>
>
> class A {
> const TEST = false;
>
Hi internals,
I'm looking for some feedback on a change with regard to static::, which
has been present throughout the 7 branch.
Have a look-see at https://bugs.php.net/bug.php?id=70997
test();
?>
In PHP 7 it dumps true, in PHP 5 false.
I'm looking for info on when, where, why it was introduc
On 28 November 2015 at 01:00, Pascal KISSIAN
wrote:
> -Message d'origine-
> De : Nikita Popov [mailto:nikita@gmail.com]
> Envoyé : jeudi 26 novembre 2015 18:25
> À : PHP internals; Anatol Belski; Remi Collet
> Objet : HashDos protection
>
> >Hi internals!
> >his mail turned out to be
Hi,
I'm writing to inform the community that from now on Kalle is considered
retired. He was indeed already inactive for personal reasons for quite some
time. Nothing seems to have changed on that till this day and there are no
responses to our pings from him, so after the discussion amongst RMs t
On Sun, Nov 29, 2015 at 7:44 PM, Lester Caine wrote:
> On 29/11/15 04:44, Levi Morrison wrote:
>>> A multicore php8 or php9? Wouldn't be cool
>> Honestly, PHP is a poor language for parallel computing. This is
>> because PHP is a web-focused language. The the most common setup ends
>> up with
18 matches
Mail list logo