Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:72408 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 93990 invoked from network); 8 Feb 2014 16:31:34 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 8 Feb 2014 16:31:34 -0000 Authentication-Results: pb1.pair.com smtp.mail=padraic.brady@gmail.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=padraic.brady@gmail.com; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.213.53 as permitted sender) X-PHP-List-Original-Sender: padraic.brady@gmail.com X-Host-Fingerprint: 209.85.213.53 mail-yh0-f53.google.com Received: from [209.85.213.53] ([209.85.213.53:45146] helo=mail-yh0-f53.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id B4/00-28087-5EB56F25 for ; Sat, 08 Feb 2014 11:31:34 -0500 Received: by mail-yh0-f53.google.com with SMTP id v1so3718675yhn.12 for ; Sat, 08 Feb 2014 08:31:30 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=QDWf/4NUVSjbv1lcoFevovSwftZdrgdgQiY+EW6TX1s=; b=amSOxqNawUnKadkQLxSmKBuoyEHaOAUkj0JaUJ07RzV89pTfWu9/Fj3LoDffQI7cYT g+aMPdMm5tiIvBGh3DSDjZkg0p0VJIjZwSo2quYqhG/pT7KZ0MpH4oapTumMz5Z2qeDQ yCva146QESX7PixZxFN/PJlrU3YUc3qcl3JfxkLRHljCeYPhbL5gTDG0+Im0f3oKjQZ8 YTMuAYdLW7IykCTBwNk/QFNa0UfCoTzfCc0SXcd6MPs3j96LnWwY211rvR/9QuXYtkJQ E5jt5LWv/5D93wElAbCmj1TZRvx9AIUk3mO2iEbFe7MVpw8zmmZcb5U8WcqnTM8c2XC2 eEOQ== MIME-Version: 1.0 X-Received: by 10.236.184.136 with SMTP id s8mr68618yhm.132.1391877089594; Sat, 08 Feb 2014 08:31:29 -0800 (PST) Received: by 10.170.84.138 with HTTP; Sat, 8 Feb 2014 08:31:29 -0800 (PST) In-Reply-To: <52F657E4.4030603@cubiclesoft.com> References: <52F61A78.1020401@lsces.co.uk> <52F62B08.6050201@ajf.me> <52F63DDE.6090600@lsces.co.uk> <52F657E4.4030603@cubiclesoft.com> Date: Sat, 8 Feb 2014 16:31:29 +0000 Message-ID: To: Thomas Hruska Cc: PHP Development Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Subject: Re: [PHP-DEV] Security Diligence From: padraic.brady@gmail.com (=?UTF-8?Q?P=C3=A1draic_Brady?=) Hi, On 8 February 2014 16:14, Thomas Hruska wrote: > On 2/8/2014 7:26 AM, Pierre Joye wrote: >> >> Lester, this is not a support list. >> >> It is your good right to stick with dead PHP versions and 10 years old >> code (whether it is your choice or not), but it is definitively not >> good to constantly posts totally off topic posts, replies or complains >> about what we do or don't. It is even more annoying in cases where you >> clearly do not understand the underlying reasons of one feature or >> another. >> >> That being said, I would love to see you actually contribute something >> for a change. > > > How about giving Lester a hard-and-fast deadline to contribute something > useful by? (Being sure to clearly define "useful" in the process.) If h= e > fails to meet the expectations by the deadline, he gets unceremoniously > booted off the list. The guy posed some doubts on the validity of what two RFCs intended to do in PHP 5.6. It might be off-topic as not being directly linked to the RFC, but going overboard isn't going to change matters. If you really want to change someone's habits you need only ignore them ;). In this case, I responded because drilling some sense of security into programmers is something I view as important (as my blog attests). It's worth having a response on the list for the record for anyone else harbouring unwritten doubts about the efforts of the RFC authors, but are not keen on airing them. The RFCs do imply some awareness of security and that's largely unavoidable unless each and every RFC needs to be a 1000 page masterwork ;). Paddy -- P=C3=A1draic Brady http://blog.astrumfutura.com http://www.survivethedeepend.com Zend Framework Community Review Team Zend Framework PHP-FIG Representative