Hey Nikita, > Full disclosure sure is controversial, but I don't think it is > regarded as necessarily bad. Just look at the way Stefan disclosed the > PHP 5.3.9 remote code execution vulnerability: Full disclosure. > > So please, again, don't call people names.
I guess you are not aware that the bug was disclosed by Stas when he commited the fix to the SVN. I never told anyone where the bug is before it was already all over the internet. So please get your facts straight. Regards, Stefam -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php