Re: [PHP-DEV] PHP 4.2.2 Download URL

Hey, I also published a .bz2 archive of 4.2.2, try a mirror to get it. Derick On Tue, 23 Jul 2002, Yasuo Ohgaki wrote: > While > > http://www.php.net/distributions/php-4.2.1.tar.bz2 > > exists, but > > http://www.php.net/distributions/php-4.2.2.tar.bz2 > > does not exist. > Could anyone ma

[PHP-DEV] Re: PHP 4.2.2 Download URL

Yasuo Ohgaki wrote: > While > > http://www.php.net/distributions/php-4.2.1.tar.bz2 > > exists, but > > http://www.php.net/distributions/php-4.2.2.tar.bz2 > > does not exist. > Could anyone make bz2 archive available? us3.php.net mirror seems have bz2 archive. I guess there were too many conn

[PHP-DEV] PHP 4.2.2 Download URL

While http://www.php.net/distributions/php-4.2.1.tar.bz2 exists, but http://www.php.net/distributions/php-4.2.2.tar.bz2 does not exist. Could anyone make bz2 archive available? -- Yasuo Ohgaki -- PHP Development Mailing List To unsubscribe, visit: http://www.php.net/u

[PHP-DEV] Re: [PHP-QA] ext/sysvsem/sysvsem.c / Bug #17785 / PHP 4.2.3

Vergoz Michael said at 21:18 22-7-2002: > > Currently sysvsem.c is incompatible with FreeBSD and when a semaphore is > > removed it crashes (using the example code in the notes for the >documentation). > >are you sure that your fbsd kernel is configured for ? Yep - recompiled the kernel, with th

Re: [PHP-DEV] W3C html validation issue

Handling is incorrect for all browsers :-) if a browser reads a htmlfile (how comes he knows is of no importance, DTD, guess whatever) it ALLWAYS knows about & being entity representaion for character '&' if in any HTML/XML/SGML file a browser reads the character '&' an entity begins ther

Re: [PHP-DEV] W3C html validation issue

You're only supposed to change it in your HTML..NOT in the browser's query line.. --Jani -- On 22 Jul 2002, Walter A. Boring IV wrote: >Howdy, > This may be a tad off topic, but it is related to how php deals with >building the $_GET superglobal w/ query string vars.

Re: [PHP-DEV] W3C html validation issue

(snip) on the & subject.. i pressume this is a html only thing, if i try a header("Location ".$url), where $url has &'s in them php failed to recognise variables from that.. if the link is made inside an tag in the same way i didnt experience this problem (using IE5.0 5.5 and 6.0), so i pressum

[PHP-DEV] libphp4.so, Sun Solaris 8, relocation error

OS: Sun Solaris 8 Problem: dilbert:/local/apache# bin/httpd Syntax error on line 244 of /local/apache/conf/httpd.conf: Cannot load /local/apache/libexec/libphp4.so into server: ld.so.1: bin/httpd: fatal: relocation error: file /local/apache/libexec/libphp4.so: symbol __floatdidf: referenced s

Re: [PHP-DEV] W3C html validation issue

There is a toggle in your php.ini file you can use to switch this behaviour of PHP: arg_separator.output = "&" -Rasmus On 22 Jul 2002, Walter A. Boring IV wrote: > Howdy, > This may be a tad off topic, but it is related to how php deals with > building the $_GET superglobal w/ query string v

[PHP-DEV] W3C html validation issue

Howdy, This may be a tad off topic, but it is related to how php deals with building the $_GET superglobal w/ query string vars. According to the W3C HTML validator, it is illegal to build a query string for a url such as foo.php?bar=1&myvar=2 They say you HAVE to use

Re: [PHP-DEV] Requests for 4.2.3

Hello! Thanks, i'll have a look at them tomorrow. Derick On Mon, 22 Jul 2002, Michael Sisolak wrote: > I believe that the following three patches should be included in 4.2.3: > > - etc/com/conversion.c, version 1.46 to fix bug #14353 > >(http://cvs.php.net/co.php/php4/ext/com/conversion.c?r=

[PHP-DEV] Requests for 4.2.3

I believe that the following three patches should be included in 4.2.3: - etc/com/conversion.c, version 1.46 to fix bug #14353 (http://cvs.php.net/co.php/php4/ext/com/conversion.c?r=1.46&Horde=0c024469e11792fde7be2067c89cfa6d) - main/sapi.c, version 1.130 to fix bug #16458 (http://cvs.php.net/co

[PHP-DEV] Windows 2000 and NT problem uploading file to server

When i upload a file from a windows 2000 or NT machine (Excluding XP) it seems like the filename passed by my variables or the HTTP_POST_FILES points to a file on the user's computer and not on the temp folder of my apache server. Ex: I upload a PDF file from a page on my server and on win98, 95,

[PHP-DEV] Re: [ANNOUNCE] PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and4.2.1

HI, Not being an expert in php..i couldnt understand the vulnerability. Can someone shed some light here. Regards anil - Original Message - From: "Marko Karppinen" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]>; "PHP-DEV" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Monday, July 22, 2002

RE: [PHP-DEV] Re: [PHP] Re: PHP Security Advisory: Vulnerability inPHP versions 4.2.0 and 4.2.1

On Mon, 22 Jul 2002, James Cox wrote: > > > On Mon, 22 Jul 2002, Rouvas Stathis wrote: > > > > > Hi all, > > > > > > Just wanting to notify everyone that > > > the link for the PHP.4.2.2 download is broken. > > > > From which mirror, and how does your link look like? > > > it's fixed. Is it

Re: [PHP-DEV] Re: [PHP] Re: PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1

I'm trying to download the source (.tar.bz2 or .tar.gz) from www.php.net. The link I get is to http://gr.php.net//distributions/php-4.2.2.tar.bz2> which then takes me into a "Search Results" page with no link to downloads. If there is a a link, it is not obvious. Thank you for your time. -Stathi

RE: [PHP-DEV] Re: [PHP] Re: PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1

> On Mon, 22 Jul 2002, Rouvas Stathis wrote: > > > Hi all, > > > > Just wanting to notify everyone that > > the link for the PHP.4.2.2 download is broken. > > From which mirror, and how does your link look like? > it's fixed. -- PHP Development Mailing List To unsubs

Re: [PHP-DEV] Re: [PHP] Re: PHP Security Advisory: Vulnerability inPHP versions 4.2.0 and 4.2.1

On Mon, 22 Jul 2002, Rouvas Stathis wrote: > Hi all, > > Just wanting to notify everyone that > the link for the PHP.4.2.2 download is broken. >From which mirror, and how does your link look like? Derick --- Did I help y

[PHP-DEV] Re: [PHP] Re: PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1

Hi all, Just wanting to notify everyone that the link for the PHP.4.2.2 download is broken. -Stathis. -- Rouvas Stathis [EMAIL PROTECTED] http://www.di.uoa.gr/~rouvas -- PHP Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-DEV] Re: PHP: Type Juggling for boolean

On Mon, 22 Jul 2002, Andrew Sitnikov wrote: > Hello derick, > > I see, what you remove "Type Juggling" for boolean from CVS ? Yes, it was decided on the mailing list that we don't want type juggling with the boolean type. regards, Derick

Re: [PHP-DEV] PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1

On Mon Jul 22, 2002 at 06:0054PM +0200, Melvyn Sopacua wrote: > I'm not sure I can upgrade all my installations, in due time, because of > backwards compatibility issues in some extensions. Only PHP 4.2.* is affected by the vulnerability. PHP 4.2.2 is similar to PHP 4.2.1 but contains just the pa

[PHP-DEV] Fw: PHP Resource Exhaustion Denial of Service

Nice day indeed :) - Original Message - From: "Matthew Murphy" <[EMAIL PROTECTED]> To: "BugTraq" <[EMAIL PROTECTED]>; "SecurITeam News" <[EMAIL PROTECTED]>; "Full Disclosure" <[EMAIL PROTECTED]> Sent: Sunday, July 21, 2002 3:45 AM Subject: PHP Resource Exhaustion Denial of Service > The

Re: [PHP-DEV] PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1

Is there anything we could use with say mod_rewrite or snort, that could detect and avert a possible attack? I'm not sure I can upgrade all my installations, in due time, because of backwards compatibility issues in some extensions. Relating to that: how's the status on script-kiddie compatible

RE: [PHP-DEV] imap_mail_compose()

Hi, we tried the current php CVS and all seems good :-) thx, Lukas Smith > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On > Behalf Of Jani Taskinen > Sent: Friday, June 28, 2002 12:39 PM > To: Lukas Smith > Cc: 'PHP Developers Mailing List' > Subject: Re: [PH

Re: [PHP-DEV] www.php.net site not responding

I cannot actually log into synacor1.php.net right now (ssh). We will move www.php.net to another mirror now (rs1.php.net) and change the downloads.php page to force downloads from mirrors (at least temporarily). - Sascha -- PHP Development Mailing List

Re: [PHP-DEV] www.php.net site not responding

> > Bandwidth limited means that we need to decentralize > > downloads.. not a question of running the right web server > > software. > > According to http://www.php.net/server-status apache conf is limited > to 130 clients and all 130 are busy with downloads. The bandwidth > used was

Re: [PHP-DEV] www.php.net site not responding

Thats why I always use a mirror. Try: http://us2.php.net/ Adam Voigt [EMAIL PROTECTED] On Mon, 2002-07-22 at 11:02, Monte Ohrt wrote: > I see, it also took down smarty.php.net with it :( I suppose there is > only one physical server at our disposal? > > Monte > > > [EMAIL PROTECTED] wrote:

Re: [PHP-DEV] www.php.net site not responding

> > > it's full with downloads taking place... apache is not that suited > > for > > > this. :( > > > > Shouldn't a more suitable web server be installed then? Handling > > downloads on the same machine with say thttpd running on a different > > port would help a lot. > > Bandwidth limited mea

Re: [PHP-DEV] www.php.net site not responding

On Mon, 22 Jul 2002, Edin Kadribasic wrote: > > it's full with downloads taking place... apache is not that suited > for > > this. :( > > Shouldn't a more suitable web server be installed then? Handling > downloads on the same machine with say thttpd running on a different > port would help a lot

Re: [PHP-DEV] www.php.net site not responding

On Mon, 22 Jul 2002, Edin Kadribasic wrote: > > it's full with downloads taking place... apache is not that suited > for > > this. :( > > Shouldn't a more suitable web server be installed then? Handling > downloads on the same machine with say thttpd running on a different > port would help a lot

Re: [PHP-DEV] www.php.net site not responding

I see, it also took down smarty.php.net with it :( I suppose there is only one physical server at our disposal? Monte [EMAIL PROTECTED] wrote: > Hi, > > it's full with downloads taking place... apache is not that suited for > this. :( > > Derick > > On Mon, 22 Jul 2002, Monte Ohrt wrote: >

Re: [PHP-DEV] www.php.net site not responding

> it's full with downloads taking place... apache is not that suited for > this. :( Shouldn't a more suitable web server be installed then? Handling downloads on the same machine with say thttpd running on a different port would help a lot. Edin -- PHP Development Mailing List

Re: [PHP-DEV] www.php.net site not responding

Hi, it's full with downloads taking place... apache is not that suited for this. :( Derick On Mon, 22 Jul 2002, Monte Ohrt wrote: > The site has not responded for at least 20 mins, although it is > pingable. I'm not sure who should get this message. > > Monte > > > -- > PHP Development M

[PHP-DEV] www.php.net site not responding

The site has not responded for at least 20 mins, although it is pingable. I'm not sure who should get this message. Monte -- PHP Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-DEV] Re: PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1

Can you post this to php.announce as well? Marko Karppinen wrote: > >PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1 > > > Issued on: July 22, 2002 > Software: PHP versions 4.2.0 and 4.2.1 > Platforms: All > > >The PHP Group has learned of a serious security vu

Re: [PHP-DEV] cvs build issues

On Mon, 22 Jul 2002, Dan Kalowsky wrote: > Derick > > Smart-ass :P > > If you notice the next line is the libtool check which points out version > 1.4.1... which is why I'm confused. doh... I should sleep more :) Derick > > On Mon, 22 Jul 2002 [EMAIL PROTECTED] wrote: > > > Hey Dan, > > >

Re: [PHP-DEV] cvs build issues

Derick Smart-ass :P If you notice the next line is the libtool check which points out version 1.4.1... which is why I'm confused. On Mon, 22 Jul 2002 [EMAIL PROTECTED] wrote: > Hey Dan, > > libtool 1.4 is required a long time now... atleast four months. Dunno > why you get this error now :) >

[PHP-DEV] PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and4.2.1

PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1 Issued on: July 22, 2002 Software: PHP versions 4.2.0 and 4.2.1 Platforms: All The PHP Group has learned of a serious security vulnerability in PHP versions 4.2.0 and 4.2.1. An intruder may be able to execute arbit