From owner-freebsd-ports@FreeBSD.ORG  Thu Oct  5 20:18:36 2006
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
X-Original-To: ports@freebsd.org
Delivered-To: freebsd-ports@FreeBSD.ORG
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id DFECA16A47E
	for <ports@freebsd.org>; Thu,  5 Oct 2006 20:18:36 +0000 (UTC)
	(envelope-from ale@FreeBSD.org)
Received: from host1.netprojects.it (host1.netprojects.it [193.254.241.205])
	by mx1.FreeBSD.org (Postfix) with SMTP id E561D43D58
	for <ports@freebsd.org>; Thu,  5 Oct 2006 20:18:34 +0000 (GMT)
	(envelope-from ale@FreeBSD.org)
Received: (qmail 68804 invoked by uid 89); 5 Oct 2006 20:18:32 -0000
Received: from unknown (HELO ?192.168.178.2?)
	(sysadmin@alexdupre.com@81.174.31.42)
	by netprojects.it with SMTP; 5 Oct 2006 20:18:32 -0000
Message-ID: <45256898.3000506@FreeBSD.org>
Date: Thu, 05 Oct 2006 22:18:32 +0200
From: Alex Dupre <ale@FreeBSD.org>
User-Agent: Mozilla Thunderbird 1.5.0.7 (X11/20060914)
MIME-Version: 1.0
To: Andrew Pantyukhin <infofarmer@FreeBSD.org>
References: <cb5206420610050053kf729b24p812cd5a08e74019a@mail.gmail.com>
In-Reply-To: <cb5206420610050053kf729b24p812cd5a08e74019a@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: FreeBSD Ports <ports@freebsd.org>
Subject: Re: PHP Vulnerabilities and Suhosin
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Oct 2006 20:18:37 -0000

Andrew Pantyukhin ha scritto:
> I've noticed we have WITH_SUHOSIN option. It may
> alleviate some security issues. In particular, suhosin
> 0.9.6 fixes this latest issue. Can we somehow make
> this option influence PKGNAME (suffix, prefix, version
> or revision) so I can mark php+suhosin 0.9.6 safe in
> VuXML?

No, because what fixes the problem is the suhosin extension
(security/php-suhosin) and not the suhosin patch.

--
Alex Dupre