On 26 September 2014 12:48, Andrea Faulds <a...@ajf.me> wrote: > > On 26 Sep 2014, at 11:46, marius adrian popa <map...@gmail.com> wrote: > > > Maybe we need an official stance about shellshock > > Do we? As I understand it, this isn’t a PHP-level vulnerability, and I’m > not sure there’s much we can reasonably do about it. Similarly to the > Heartbleed bug, control is not in our hands here. > > Informing people about the cases where they *might* be at risk when running PHP doesn't seem a bad idea. Even though PHP itself is not at fault.
> -- > Andrea Faulds > http://ajf.me/ > > > > > > -- > PHP Internals - PHP Runtime Development Mailing List > To unsubscribe, visit: http://www.php.net/unsub.php > > -- <hype> WWW: plphp.dk / plind.dk CV: careers.stackoverflow.com/peterlind LinkedIn: plind Twitter: kafe15 </hype>
