[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] PHP Vulnerability

Subject: Re: [cobalt-users] PHP Vulnerability
From: "Steve Werby" <steve-lists@xxxxxxxxxxxx>
Date: Mon Jul 22 08:41:46 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

"Matt Brown" <matt@xxxxxxxxxxxxxxxxxx> wrote:
> I noticed today on the PHP.net site, that in response to a serious
> vulnerability a new version of php is available (Version 4.2.2). Is Cobalt
> or PKGMaster.com likely to create an update/package to fix this problem ?

Based on past history, I'd suspect the folks behind pkgmaster will release
an updated PKG.  Sun didn't release a newer version of PHP to handle the
previous vulnerability so I doubt they will.  Of course you can always block
POST requests, though on many servers that would be a kiss of death since
any forms using the POST method will cease to work.  It would break nearly
every application I've ever written!

--
Steve Werby
President, Befriend Internet Services LLC
http://www.befriend.com/

References:
- [cobalt-users] PHP Vulnerability
  - From: Matt Brown

Prev by Date: Re: [cobalt-users] What do do with a Raq1
Next by Date: [cobalt-users] RAQ 2 mysql install problems
Previous by thread: [cobalt-users] PHP Vulnerability
Next by thread: [cobalt-users] RAQ 2 mysql install problems

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index