Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:23377 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 12273 invoked by uid 1010); 15 May 2006 16:32:50 -0000 Delivered-To: ezmlm-scan-internals@lists.php.net Delivered-To: ezmlm-internals@lists.php.net Received: (qmail 12258 invoked from network); 15 May 2006 16:32:50 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 15 May 2006 16:32:50 -0000 X-PHP-List-Original-Sender: sesser@php.net X-Host-Fingerprint: 81.169.145.170 natlemon.rzone.de Solaris 10 (beta) Received: from ([81.169.145.170:41724] helo=natlemon.rzone.de) by pb1.pair.com (ecelerity 2.0 beta r(6323M)) with SMTP id 01/E0-19568-13DA8644 for ; Mon, 15 May 2006 12:32:50 -0400 Received: from [192.168.1.77] (p50874525.dip.t-dialin.net [80.135.69.37]) by post.webmailer.de (8.13.6/8.13.6) with ESMTP id k4FGWTIl007821; Mon, 15 May 2006 18:32:33 +0200 (MEST) Message-ID: <4468AD19.5020306@php.net> Date: Mon, 15 May 2006 18:32:25 +0200 User-Agent: Thunderbird 1.5.0.2 (Windows/20060308) MIME-Version: 1.0 To: Andi Gutmans CC: PHP internals References: <4468848D.5020602@php.net> <7.0.1.0.2.20060515091102.044df950@zend.com> In-Reply-To: <7.0.1.0.2.20060515091102.044df950@zend.com> X-Enigmail-Version: 0.94.0.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: Re: [PHP-DEV] PHP Release Process Sucks From: sesser@php.net (Stefan Esser) Hello Andi, > I don't see why this attack is directed at Zend people working on PHP, > where the release process is completely a community driven effort (and > last time I checked, no enterprise was involved in that process either). Well I don't see why Zend people commit code that obviously broke a key functionality without testing it. And then Zend people come out under the trees and speak up that our testers are doing bad jobs. It is true that obviously NOONE has tested the code, because otherwise it would have been seen instantly. > Ilia for one works hard and does his best (probably better than any > release manager before him) to juggle between the various issues and > priorities of each release. Andi, I was not speaking against Ilia. I know that he does a job that actually noone really likes todo. The problems with 5.1.x releases have to be blamed on other parties. Maybe you can say it was his fault that this stupid .phar was not in the archive, but the bigger fault is the lack of a sense of basic security principles. From my point of view it is unbelievable how someone can add a 'wget pear.php.net/bla...' to the 'make install' process. Of course this is not triggered if the .phar file is packaged, but this fallback is insane. And Ilia has also nothing todo with the lack of a PHP 4.4.3 release. Yours, Stefan Esser