theinquirer.net— Security boffins have found a critical vulnerability in two PHP libraries that are used to provide web services and content management systems.
Aug 25, 2005View in Crawl 4
"So, Doofus, you'd rather used closed source propiatery software, having just as many or more vulnerabilities, living in ignorance, with far less people around to see the source code and notice the vulnerability before someone malicious finds it?"Pretty much. I don't have as many vulnerabilities when people don't know how my code works. :)"It has no business model and it is taking away money from poor and starving programmers."Amen.
I wish the headline on the related story was a bit more accurate. They make it sound like the php engine is to blame when it's just a library written in php that is commonly used.I am sure there are many libraries out there that are buggy doesn't mean the language is prone to hacks. Just the stupid scripters code.
noobertAug 25, 2005
Most good ISP will have installed the fix if and when it is release if it hasnt been already.
fidosaxAug 25, 2005
I wonder if this is how un-root nailed an entire local school system's network? Pretty heartless if you ask me.
donwilsonAug 25, 2005
"So, Doofus, you'd rather used closed source propiatery software, having just as many or more vulnerabilities, living in ignorance, with far less people around to see the source code and notice the vulnerability before someone malicious finds it?"Pretty much. I don't have as many vulnerabilities when people don't know how my code works. :)"It has no business model and it is taking away money from poor and starving programmers."Amen.
phoenixdigAug 25, 2005
I wish the headline on the related story was a bit more accurate. They make it sound like the php engine is to blame when it's just a library written in php that is commonly used.I am sure there are many libraries out there that are buggy doesn't mean the language is prone to hacks. Just the stupid scripters code.