Hello :-),
Huge +1 from the [Hoa] community. We have already disabled it by default
since a long time. However, could it introduce potential regressions (BC
breaks)? I guess yes. So I would go for PHP7.0 instead of PHP7.1.
Cheers!
[Hoa]: http://hoa-project.net/
On 29/07/15 22:37, Anthony F
Hi Ryan,
On Thu, Jul 30, 2015 at 8:35 AM, Ryan Pallas wrote:
> I wrote draft RFC.
>>
>> https://wiki.php.net/rfc/precise_float_value
>>
>> Please comment. I would like to start RFC discussion shortly.
>> Thank you.
>>
>
> My thought would be why not -1 to make it obvious it has special meaning?
On Wed, Jul 29, 2015 at 5:25 PM, Yasuo Ohgaki wrote:
> Hi all,
>
> On Thu, Jul 30, 2015 at 7:44 AM, Yasuo Ohgaki wrote:
>
> > On Thu, Jul 30, 2015 at 1:13 AM, Nikita Popov
> > wrote:
> >
> >> Instead of continuing to use serialize_precision, which will produce
> >> unnecessarily long outputs fo
Hi all,
On Thu, Jul 30, 2015 at 7:44 AM, Yasuo Ohgaki wrote:
> On Thu, Jul 30, 2015 at 1:13 AM, Nikita Popov
> wrote:
>
>> Instead of continuing to use serialize_precision, which will produce
>> unnecessarily long outputs for many values, why don't we just switch to
>> using the 0 mode of zend_
Hi Nikita,
On Thu, Jul 30, 2015 at 1:13 AM, Nikita Popov wrote:
> Instead of continuing to use serialize_precision, which will produce
> unnecessarily long outputs for many values, why don't we just switch to
> using the 0 mode of zend_dtoa, i.e. to return the shortest output that is
> still acc
Hi!
> Currently, PHP by default is vulnerable to XXE attacks:
> https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing
>
> To bypass this, you need to turn off external entity loading:
>
> libxml_disable_entity_loader(true);
AFAIR right now, due to how it is implemented, this bloc
Anthony Ferrara wrote:
> I wanted to float an idea by you for PHP 7 (or 7.1 depending on the
> RM's feedback).
>
> Currently, PHP by default is vulnerable to XXE attacks:
> https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing
>
> To bypass this, you need to turn off external enti
Hi,
> -Original Message-
> From: Pierre Joye [mailto:pierre@gmail.com]
> Sent: Wednesday, July 29, 2015 11:01 PM
> To: Anthony Ferrara
> Cc: PHP internals
> Subject: Re: [PHP-DEV] Disabling External Entities in libxml By Default
>
> On Jul 29, 2015 11:38 PM, "Anthony Ferrara" wrote
On Jul 29, 2015 11:38 PM, "Anthony Ferrara" wrote:
>
> All,
>
> I wanted to float an idea by you for PHP 7 (or 7.1 depending on the
> RM's feedback).
>
> Currently, PHP by default is vulnerable to XXE attacks:
> https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing
>
> To bypass thi
On Wed, Jul 29, 2015 at 4:37 PM, Anthony Ferrara wrote:
> All,
>
> I wanted to float an idea by you for PHP 7 (or 7.1 depending on the
> RM's feedback).
>
> Currently, PHP by default is vulnerable to XXE attacks:
> https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing
>
> To bypass
All,
I wanted to float an idea by you for PHP 7 (or 7.1 depending on the
RM's feedback).
Currently, PHP by default is vulnerable to XXE attacks:
https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing
To bypass this, you need to turn off external entity loading:
libxml_disable_enti
On Wed, Jul 29, 2015 at 11:09 AM, Yasuo Ohgaki wrote:
> Hi Jakub,
>
> For me, JSON is one of a data exchange format just like
> serialize/var_export.
> Anyway, we are about to reach an agreement.
>
> On Wed, Jul 29, 2015 at 5:32 PM, Jakub Zelenka wrote:
>
> >
> >
> >>
> >>>
> Question is "I
On 29 Jul 2015, at 10:02, Lester Caine wrote:
> The problem is removing all of the poor quality on-line guides and
> replacing them with ones which provide a mush better working model.
> Trying to get PHP too pick up a few edge cases is a poor use of time.
I completely disagree... prepared st
Hi Guys,
My name is Bogdan Andone and I work for Intel in the area of SW performance
analysis and optimizations.
We would like to actively contribute to Zend PHP project and to involve
ourselves in finding new performance improvement opportunities based on
available and/or new hardware features
On Wed, Jul 29, 2015 at 3:05 PM, Samson Endale <4sa...@gmail.com> wrote:
> can i have a response please!
>
> On 5/31/15, Samson Endale <4sa...@gmail.com> wrote:
> > BOLD & SIMPLE
> > an ETHIOPIAN CALENDER. we deserve one!!!
> >
> > There is no support for Ethiopian calender in any programming
> >
What's the point of having it in the core? You already created a library in
userland that can be used by other projects if they need support for it.
Regards, Niklas
2015-07-29 15:05 GMT+02:00 Samson Endale <4sa...@gmail.com>:
> can i have a response please!
>
> On 5/31/15, Samson Endale <4sa...@
can i have a response please!
On 5/31/15, Samson Endale <4sa...@gmail.com> wrote:
> BOLD & SIMPLE
> an ETHIOPIAN CALENDER. we deserve one!!!
>
> There is no support for Ethiopian calender in any programming
> language(as far as i know). PHP should be first one. just to let u
> know Ethiopian popul
Greetings from Germany!
I work with PHP since early 2007, and would love to improve the core
functionallity. Maybe the registration on the https://wiki.php.net site is a
pretty good first step.
The registration mentions, that i should mail this adress to get full
authorization.
So, my username
Hi Jakub,
For me, JSON is one of a data exchange format just like
serialize/var_export.
Anyway, we are about to reach an agreement.
On Wed, Jul 29, 2015 at 5:32 PM, Jakub Zelenka wrote:
>
>
>>
>>>
Question is "Is this the way it should be?".
>>> I have already said that using pre
On 28/07/15 18:33, Matt Tait wrote:
> What do you all think? There's obviously a bit more work to do; the PoC
> currently only covers mysqli_query, but I thought this stage is an
> interesting point to throw it open to comments before working to complete
> it.
If you want a safe and stable system
Hi Yasuo,
On Tue, Jul 28, 2015 at 10:51 PM, Yasuo Ohgaki wrote:
> Hi Jakub,
>
> On Wed, Jul 29, 2015 at 3:15 AM, Jakub Zelenka wrote:
>
>> On Mon, Jul 27, 2015 at 11:17 PM, Yasuo Ohgaki
>> wrote:
>>
>>>
>>> Get JSON data from Google maps and store the data using PHP, then
>>> users lose last 2
Pierre Joye wrote on 28.07.2015 23:05:
> The
> On Jul 28, 2015 11:42 PM, "Christoph Becker" wrote:
>>
>> Rowan Collins wrote:
>>
>> > On 28 July 2015 18:33:31 BST, Matt Tait wrote:
>> >> Hi all,
>> >>
>> >> I've written an RFC (and PoC) about automatic detection and blocking of
>> >> SQL
>> >> i
Results for project php-src-nightly, build date 2015-07-29 05:00:00+03:00
commit: 4d578f28df214c5faf115d3a629f9ffe82640b2b
revision_date: 2015-07-28 18:38:23+02:00
environment:Haswell-EP
cpu:Intel(R) Xeon(R) CPU E5-2699 v3 @ 2.30GHz 2x18 cores, stepping
2, LLC 45 MB
23 matches
Mail list logo