[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: PHP - to be or not to be
- To: misc_(_at_)_openbsd_(_dot_)_org
- Subject: Re: PHP - to be or not to be
- From: Bram Van Dam <bramvandam_(_at_)_pandora_(_dot_)_be>
- Date: Thu, 16 Dec 2004 18:16:22 +0100
Toni Mueller wrote:
> and ask the porter for PHP what he thinks about this issue.
It was pointed out to me yesterday -- by Tim Donahue -- that since a few
months a couple of people started to integrate security patches into the
-stable ports tree.
I wonder, however, whether updated packages are also built from this --
I'm guessing the answer is no -- or whether there's an easy way to
update ports like this.
Furthermore I'm wondering whether that PHP 4.3.10 release -- which is
after all mainly a security-fix release -- will be shoved in that
particular ports tree.
Stefan is quite correct when stating that PHP is quite buggy, but the
PHP people do put an effort in fixing security issues on a timely manner
(as far as I'm aware of course), though I think their efforts would
furthermore benefit from an easier procedure to have those
security-updates propagate through the ports tree and whatnot. (No, I'm
not volunteering, if I could I would just do it.)
(Whoops, forgot to send this to the list last time, sry Toni)
Visit your host, monkey.org