Ubuntu ships with version < PHP6, and it's likely that before 8.10 there will be no PHP6, so this is an issue. I reiterate my point. Novice developers will learn PHP with bad configuration, they won't (or badly) escape variables = create security holes in their applications. Other developers will simply edit php.ini after fresh install. To fix this bug by yourself it's very easy, but it's Important that Ubuntu offer good packages by default. Why don't fix that ?
-- PHP should be shipped with magic_quotes_gpc = Off in php.ini https://bugs.launchpad.net/bugs/204479 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs