NYCPHP Meetup

NYPHP.org

[nycphp-talk] more crappy programs: security focus 230 - 232

Chris Shiflett shiflett at php.net
Thu Jan 22 10:35:00 EST 2004


--- jon baer <jonbaer at jonbaer.net> wrote:
> not to mention the phpbb bug which was also listed there is pretty
> old + has already been fixed - yet - was listed as *not* being
> supplied from the vendor which is false ...

Tim Gales made me realize recently how unreliable the sources of some of
this information are (he asked for verification of a vulnerability on this
list, and the claim was totally false).

It doesn't take too terribly long to verify the validitity, or lack
thereof, of what is mentioned on Security Focus relating to PHP. Maybe
NYPHP could host a Snopes-like site for this type of thing. :-)

Chris

=====
Chris Shiflett - http://shiflett.org/

PHP Security Handbook
     Coming mid-2004
HTTP Developer's Handbook
     http://httphandbook.org/



More information about the talk mailing list