Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:33354 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 7998 invoked by uid 1010); 20 Nov 2007 07:48:57 -0000 Delivered-To: ezmlm-scan-internals@lists.php.net Delivered-To: ezmlm-internals@lists.php.net Received: (qmail 7983 invoked from network); 20 Nov 2007 07:48:57 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 20 Nov 2007 07:48:57 -0000 Authentication-Results: pb1.pair.com header.from=stefan.priebsch@e-novative.de; sender-id=unknown Authentication-Results: pb1.pair.com smtp.mail=stefan.priebsch@e-novative.de; spf=permerror; sender-id=unknown Received-SPF: error (pb1.pair.com: domain e-novative.de from 85.214.26.34 cause and error) X-PHP-List-Original-Sender: stefan.priebsch@e-novative.de X-Host-Fingerprint: 85.214.26.34 eno001.e-novative.de Linux 2.5 (sometimes 2.4) (4) Received: from [85.214.26.34] ([85.214.26.34:1425] helo=eno001.e-novative.de) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id EB/B7-50425-76192474 for ; Tue, 20 Nov 2007 02:48:56 -0500 Received: from [127.0.0.1] (p57AE7EA1.dip.t-dialin.net [87.174.126.161]) by eno001.e-novative.de (Postfix) with ESMTP id 3EDE18442E2; Tue, 20 Nov 2007 08:56:48 +0100 (CET) Message-ID: <4742915D.4060601@e-novative.de> Date: Tue, 20 Nov 2007 08:48:45 +0100 Organization: e-novative GmbH User-Agent: Thunderbird 2.0.0.9 (Windows/20071031) MIME-Version: 1.0 To: =?UTF-8?B?RGF2aWQgWsO8bGtl?= CC: Stanislav Malyshev , PHP internals References: <47401946.2050406@sektioneins.de> <4740B136.2080207@hardened-php.net> <4217C4AB-1725-4D54-95D0-82262DB012BC@pooteeweet.org> <21E0FBBA-645D-4883-A9A9-7BCDC74D74A1@bitxtender.com> <47421481.6050802@zend.com> <127D6AD6-6CC9-4C19-B0D0-853676B4EABD@bitxtender.com> In-Reply-To: <127D6AD6-6CC9-4C19-B0D0-853676B4EABD@bitxtender.com> X-Enigmail-Version: 0.95.5 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Subject: Re: [PHP-DEV] Tainted Mode Decision From: stefan.priebsch@e-novative.de (Stefan Priebsch) Hey David, David Zülke schrieb: > bother us, at least they have been warned). But some implicit guessing > magic that, once again, means people are gonna switch their brains off - > please not. Frankly, I don't care about people that switch their brains off. If one doesn't care about security, or doesn't understand the related problems, they'll always be able to write crappy code, no matter what. I'd love to see a taint mode in PHP because it would help me make stuff I use and work on (at least) a little more secure - without a lot of effort. Regards, Stefan -- >e-novative> - We make IT work for you. e-novative GmbH - HR: Amtsgericht München HRB 139407 Sitz: Wolfratshausen - GF: Dipl. Inform. Stefan Priebsch http://www.e-novative.de - GnuPG Key: 0x7DB67F7F