Nick Edwards wrote:
So, is the general opinion here, from actual "factual experience" and
not because you read the same trashy bloggers as I did, in agreeance?
is it genuinely true that suhosin is now irrelevant with 5.4 upwards
and php is now much safer on its own?
Practical experience is that suhosin does not actually work with 5.4?
I've had to disable it because of problems with session handling amongst other
things and don't have time to investigate why.
Would I prefer to re-enable it - YES - and it's one of a number of reasons that
have been making switching currently stable PHP5.2 servers over to 5.4 less
attractive.
The amount of time I'm wasting on coping with many of the so called improvements
across the whole Linux platform is making me feel that commercial interests are
actually in control rather than users/developers? Staying with stable platforms
that we are comfortable with is just not practical :(
--
Lester Caine - G8HFL
-----------------------------
Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
