Date: Thu, 30 Dec 2004 08:07:58 -0800 (PST) From: Roger Marquis <marquis@roble.com> To: freebsd-security@freebsd.org Subject: Re: Found security expliot in port phpBB 2.0.8 FreeBSD4.10 Message-ID: <20041230160758.344A22BC2F@mx5.roble.com> In-Reply-To: <20041230120117.B8CBD16A4D7@hub.freebsd.org> References: <20041230120117.B8CBD16A4D7@hub.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> Julian Elischer <julian@elischer.org> writes: > ...or we could urge them to stop using PHP at all. If only... but in favor of what, Perl? One nice thing about PHP is its similarity to Java/JSP. Learn one and you're part way to learning the other, and JSP really is a web technology the security community should be encouraging. > Kris Kennaway <kris@obsecurity.org> wrote: > Remember that FreeBSD is supported by the community, so you also could > have submitted the update but didn't. With all due respect to Kris and his excellent work, shooting the messenger is probably not the best way to encourage discussion of substantive issues. -- Roger Marquis Roble Systems Consulting http://www.roble.com/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20041230160758.344A22BC2F>