Hi, On Thu, Feb 9, 2012 at 12:16 PM, John R. Dennison <jrd@xxxxxxxxxxxx> wrote: >> http://dev.centos.org/centos/5/testing/SRPMS/ > > This should be avoided at all costs. Those packages have not been > updated for ever and as a result have multiple known critical > vulnerabilities. Additionally, as has been pointed out repeatedly, > these packages must be removed; the project is effectively pushing known > vulnerable packages. Thank you John for pointing this out! I just googled for PHP 5.2 SRPM and as it was an official CentOS 5 repositry that provided the package I thought it was maintained security wise. Of course the word "testing" should have rang a bell... Best, Peter _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: advice on having php 5.2.x:
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: advice on having php 5.2.x:
- From: Peter Peltonen <peter.peltonen@xxxxxxxxx>
- Date: Thu, 9 Feb 2012 12:33:07 +0200
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <20120209101645.GM2501@frodo.gerdesas.com>
- References:
- advice on having php 5.2.x:
- From: Mihamina Rakotomandimby
- Re: advice on having php 5.2.x:
- From: Peter Peltonen
- Re: advice on having php 5.2.x:
- From: John R. Dennison
- advice on having php 5.2.x:
- Prev by Date: Re: advice on having php 5.2.x:
- Next by Date: Re: Eeek, my centos6 box won't boot after broken update, need help w/ yum [SOLVED]
- Previous by thread: Re: advice on having php 5.2.x:
- Next by thread: Re: advice on having php 5.2.x:
- Index(es):
 |