+1 to remove magic_quotes from trunk Most of us want to get rid of this feature. I agree with you that some people probably don't know php.ini and magic_quotes but i'm not sure that even if we wait we'll find a better way to tell them about those. People (not all) on shared hosting don't really pay attention to PHP upgrades on their server even if it's a major release and it's sadly not going to change.
Pierrick 2010/4/16 Johannes Schlüter <johan...@php.net>: > On Fri, 2010-04-16 at 11:43 +0300, Arvids Godjuks wrote: >> You must have been flying somethere in the Andromeda galaxy all this time! >> >> magic_quotes, safe_mode and other stuff was announced depricated now for a >> few years, there is big buzz going on about it and these features are >> allready marked as depricated and throw warnings as of 5.3, some even as off >> 5.2. It's hard to miss articles, announce, conferences and numerous blog >> entries literally from any PHP developer who has a blog that these features >> are to be droped. > > Go to a random hosting site and look at there configuration - magic > quotes will be enabled. Look at some (not all) distributor packages - > magic quotes will be on. Many of them won't see it as it's "hidden" in > an error log which barely anybody read. Yes you do. You also read this > list. But that's a minority of our users. Most don't follow the > development closely. Most don't read blogs. Most don't know about > php.ini. Most don't know about security. > > The people we interact with are just the tip of the iceberg. Most PHP > users are hidden on the internet. > > I would love to get rid of this "feature" but I fear that many users > won't notice and i don't know how to tell them. > > johannes > > > > -- > PHP Internals - PHP Runtime Development Mailing List > To unsubscribe, visit: http://www.php.net/unsub.php > > -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php