[php-maint] [PHP-DEV] Suhosin patch disabled by default in Debian php5 builds
Thomas Goirand
zigo at debian.org
Thu Feb 2 20:11:47 UTC 2012
On 02/03/2012 01:59 AM, Stas Malyshev wrote:
> You seem to advocate the approach in which
> performance and convenience can and should be sacrificed to security.
> It is a matter of opinion
Something I don't get here. If there's this issue, and
different tastes, why can't a build flag be used, so
that you can choose security or speed depending on your
needs? If you do some:
#ifdef ENABLE_SLOWER_SUHOSIN_SECURITY
in the controversial parts, then I don't see how this
would be of trouble for anyone to have Suhosin included
in upstream PHP.
Cheers,
Thomas Goirand (zigo)
More information about the pkg-php-maint
mailing list