Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:54019
Return-Path: <smalyshev@sugarcrm.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 21788 invoked from network); 18 Jul 2011 07:52:30 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 18 Jul 2011 07:52:30 -0000
Authentication-Results: pb1.pair.com smtp.mail=smalyshev@sugarcrm.com; spf=pass; sender-id=pass
Authentication-Results: pb1.pair.com header.from=smalyshev@sugarcrm.com; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain sugarcrm.com designates 67.192.241.193 as permitted sender)
X-PHP-List-Original-Sender: smalyshev@sugarcrm.com
X-Host-Fingerprint: 67.192.241.193 smtp193.dfw.emailsrvr.com Linux 2.6
Received: from [67.192.241.193] ([67.192.241.193:36789] helo=smtp193.dfw.emailsrvr.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id F3/81-08769-D36E32E4 for <internals@lists.php.net>; Mon, 18 Jul 2011 03:52:30 -0400
Received: from localhost (localhost.localdomain [127.0.0.1])
	by smtp19.relay.dfw1a.emailsrvr.com (SMTP Server) with ESMTP id 8464E3C8294;
	Mon, 18 Jul 2011 03:52:26 -0400 (EDT)
X-Virus-Scanned: OK
Received: by smtp19.relay.dfw1a.emailsrvr.com (Authenticated sender: smalyshev-AT-sugarcrm.com) with ESMTPSA id 1CC343C8178;
	Mon, 18 Jul 2011 03:52:25 -0400 (EDT)
Message-ID: <4E23E639.2060304@sugarcrm.com>
Date: Mon, 18 Jul 2011 00:52:25 -0700
Organization: SugarCRM
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:5.0) Gecko/20110624 Thunderbird/5.0
MIME-Version: 1.0
To: Philip Olson <philip@roshambo.org>
CC: PHP Internals List <internals@lists.php.net>
References: <4E17F5A0.3070409@sugarcrm.com> <BC37F785-39A7-4A38-ADBD-482C7D87438B@roshambo.org> <4E1B9343.3090000@sugarcrm.com> <967B58EB-C704-40CD-AFEE-D0CA2192F4FA@roshambo.org> <4E1DC072.8080300@sugarcrm.com> <CAH-PCH7=08Pqq=5-Z5BA1wpc8sXcS20ohmsq8FGnDm-yQGqbyQ@mail.gmail.com> <4E1DE20E.20902@sugarcrm.com> <CAH-PCH50J+U4Jgupbc70v4ZdXq9nVk74n6AXpmmEQXt=gOP26A@mail.gmail.com> <4E1DEE7C.8030203@sugarcrm.com> <20110717010457.GA22595@panix.com> <CAKUjMCWwQrdM=KTx+BznxGX172=vasbhgPocHkjzk=0M0Bhj+Q@mail.gmail.com> <4E237EC9.3070503@sugarcrm.com> <46348DB2-2E2D-4058-B796-ADB6E42EDC8B@roshambo.org> <4E2384C9.1060300@sugarcrm.com> <F01A5209-5FAC-4088-8EB9-E15D0F599845@roshambo.org>
In-Reply-To: <F01A5209-5FAC-4088-8EB9-E15D0F599845@roshambo.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: [PHP-DEV] [VOTE] 5.4 features vote
From: smalyshev@sugarcrm.com (Stas Malyshev)

Hi!

On 7/17/11 6:32 PM, Philip Olson wrote:
> there been a proper discussion or RFC on this topic for 5.4. The vote
> was premature. Would it have turned out differently had we done it
> properly? Probably, but at least we'd have a proper reference point
> for why we removed a security feature that was still enabled by
> default.

Magic quotes isn't a security feature. It's a pseudo-security
misfeature. That's exactly why it needs to be gone.

> And to be clear, I am not arguing for or against its removal, but
> rather, am arguing against how it was handled. Throwing 10 separate
> topics (some with and without RFCs) into one thread is a recipe for
> non-discussion. That's what happened here, with magic quotes removal
> being a part of it.

Nobody prevented anybody from discussing any topic, and removal of magic 
quotes was on the agenda since forever. If it's too hard to look at todo 
page and read the RFC emails on the list - no problem, but I don't see 
what else can be done. If there wasn't enough discussion, maybe because 
not enough people cared to discuss it.
-- 
Stanislav Malyshev, Software Architect
SugarCRM: http://www.sugarcrm.com/
(408)454-6900 ext. 227