Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:58389 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 81555 invoked from network); 1 Mar 2012 08:38:13 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 1 Mar 2012 08:38:13 -0000 Authentication-Results: pb1.pair.com smtp.mail=johncrenshaw@priacta.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=johncrenshaw@priacta.com; sender-id=pass Received-SPF: pass (pb1.pair.com: domain priacta.com designates 64.95.72.244 as permitted sender) X-PHP-List-Original-Sender: johncrenshaw@priacta.com X-Host-Fingerprint: 64.95.72.244 mxout.myoutlookonline.com Received: from [64.95.72.244] ([64.95.72.244:22783] helo=mxout.myoutlookonline.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 33/DA-46815-4753F4F4 for ; Thu, 01 Mar 2012 03:38:12 -0500 Received: from mxout.myoutlookonline.com (localhost [127.0.0.1]) by mxout.myoutlookonline.com (Postfix) with ESMTP id 699C7416C07; Thu, 1 Mar 2012 03:38:09 -0500 (EST) X-Virus-Scanned: by SpamTitan at mail.lan Received: from HUB015.mail.lan (unknown [10.110.2.1]) by mxout.myoutlookonline.com (Postfix) with ESMTP id 1C886416BEC; Thu, 1 Mar 2012 03:38:09 -0500 (EST) Received: from MAILR001.mail.lan ([10.110.18.27]) by HUB015.mail.lan ([10.110.17.15]) with mapi; Thu, 1 Mar 2012 03:37:51 -0500 To: Kris Craig , Richard Lynch CC: "internals@lists.php.net" Date: Thu, 1 Mar 2012 03:38:01 -0500 Thread-Topic: [PHP-DEV] PHP Philosophy (was RE: [PHP-DEV] Scalar type hinting) Thread-Index: Acz3WOaBPkidUUC6RUK/gNnPTzQIAAALAPAg Message-ID: References: <693e15008681dfe7372eaea66214f8a8.squirrel@www.l-i-e.com> <4F4D5D44.5090307@developersdesk.com> In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: acceptlanguage: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Subject: RE: [PHP-DEV] PHP Philosophy (was RE: [PHP-DEV] Scalar type hinting) From: johncrenshaw@priacta.com (John Crenshaw) > You might consider those scripts poor programming practice. We all do. > But PHP is the language of the unwashed masses, and that was, and is,=20 > part of why it is hugely popular. Somebody who barely understands=20 > programming can pound away at the keyboard and write a bloody useful=20 > web application, breaking 10,000 Computer Science rules along the way. And in 20 minutes I can hack into that application 20 different ways. This = isn't really PHP's fault...or is it? By deliberately catering to the lowest= possible denominator is it possible that PHP itself contributes to the pro= liferation of wildly insecure web sites? I do understand the "unwashed mass= es" argument, and yet, the security geek in me sometimes questions how "goo= d" this is. (Before someone flames me, I'm not really saying that we should scrap any f= oundational principles or tell basic users to go hang themselves. This is m= ostly philosophical musing.) John Crenshaw Priacta, Inc.