Month of PHP Bugs Has Begun

Posted by Zonk on Saturday March 3, 2007 @06:28AM from the quick-hide-the-furniture dept.

An anonymous reader writes "The previously announced Month of PHP Bugs started three days ago, and already lists 8 security vulnerabilities in PHP and PHP related software. From the site: 'This initiative is an effort to improve the security of PHP. However we will not concentrate on problems in the PHP language that might result in insecure PHP applications, but on security vulnerabilities in the PHP core. During March 2007 old and new security vulnerabilities in the Zend Engine, the PHP core and the PHP extensions will be disclosed on a day by day basis. We will also point out necessary changes in the current vulnerability management process used by the PHP Security Response Team.'"

3 of 165 comments (clear)

Min score:

Reason:

Sort:

Er... by John+Nowak · 2007-03-03 06:47 · Score: 0, Troll

Just one month?
Re:Don't beleive it by SimHacker · 2007-03-03 08:40 · Score: 1, Troll

And how many PHP applications are NOT FAULTY?

Not many!

-Don

--
Take a look and feel free: http://www.PieMenu.com
Re:Be Prepared? by SimHacker · 2007-03-03 08:45 · Score: 0, Troll

The Python reference manual.

Seriously: So what if "properly coded PHP" is still useful? It's not as useful or as easy to properly code as other languages, so why do you persist in using an inferior, defective language like PHP? Properly sealed lead and asbestos are "still useful" in constructing new houses, but you certainly should not use them! The fact that something's "still useful" does not negate the fact that it's still foolish to use it, if you have a better alternative.
-Don

--
Take a look and feel free: http://www.PieMenu.com