> On 06 Feb 2015, at 14:22, Arthur Schiwon <[email protected]> wrote: > > Also note, PHP 5.3 is dead: http://de2.php.net/archive/2014.php#id2014-08-14-1
Let me use that opportunity to state the fact that distributions will never be able to backport all security patches properly. The argument “but RHEL backports security fixes” is not really a valid one. A very good example is a security check for a problem fixed in PHP 2011 where I added an exploitability check in our installer and if the bug was still exploitable showed a big red security warning. The problem was then finally addressed 2013 in RHEL as well (was funny to see our users spamming the RHEL bug tracker) - Lukas
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ User mailing list [email protected] http://mailman.owncloud.org/mailman/listinfo/user
