------------------------------------------------------------------------
_ _ _ _ ___ _ _ ___
| || | __ _ _ _ __| | ___ _ _ ___ __| | ___ | _ \| || || _ \
| __ |/ _` || '_|/ _` |/ -_)| ' \ / -_)/ _` ||___|| _/| __ || _/
|_||_|\__,_||_| \__,_|\___||_||_|\___|\__,_| |_| |_||_||_|
------------------------------------------------------------------------
The Hardened-PHP project team is pleased to announce the release of
version 0.1.1 of our PHP security hardening patch. This new Hardened-PHP
release is the first one that is publicly announced and is considered
stable on atleast linux systems.
Hardened-PHP is a patch against the PHP codebase which adds security
hardening features to it to protect servers on the one hand against a
number of well known problems in hastily written PHP scripts and on
the other hand against potential unknown vulnerabilities within the
engine itself.
Hardened-PHP provides:
+ Protection of the Zend Memory Manager with canaries
+ Protection of Zend Linked Lists with canaries
+ Protection against internal format string exploits
+ Protection against arbitrary code inclusion
+ Syslog logging of attackers IP
We consider Hardened-PHP 0.1.1 to be the best version of Hardened-PHP
available and we strongly recommend that users of older versions upgrade
as soon as possible.
Hardened-PHP is available for download via HTTP from
http:///www.hardened-php.net/download.php
The distribution file name is:
hardened-php-4.3.6-0.1.1.patch.gz
MD5 checksum: 62f7d49b89c93dace247c2bc189b7503
Yours,
The Hardened-PHP Project Team...
http://www.hardened-php.net
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
