Jeffery Fernandez wrote:
On Saturday 19 May 2007 23:59, Wez Furlong wrote:
On 5/19/07, Antony Dovgal <[EMAIL PROTECTED]> wrote:
I just want to clarify this situation - either the maintainers are
temporarily busy and will continue working on their extensions or they
have to admit that they won't
>> strlen("\xC4\x85") = 2. strlen((binary)"\xC4\x85") = 4. Not good. It is
>> one character in utf-8.
>
> I'm afraid I don't understand you again..
0xC4 and 0x85 are hex codes for latin small letter a with ogonek in utf-8. ą
If script is written in utf-8, I expect bool(true) on var_dump() line.
On Saturday 19 May 2007 23:59, Wez Furlong wrote:
> On 5/19/07, Antony Dovgal <[EMAIL PROTECTED]> wrote:
> > I just want to clarify this situation - either the maintainers are
> > temporarily busy and will continue working on their extensions or they
> > have to admit that they won't do it anymore,
On 19.05.2007 19:48, Tomas Kuliavas wrote:
Try this, you'll see it's really easy:
";
var_dump(strlen(($s)));
var_dump(strlen((binary)$s));
?>
http://www.php.net/language.types.type-juggling#language.types.typecasting
No (binary).
PHP 4.1.2 = parse error in test2.php on line 5.
PHP 5.2.0 = Pars
Stanislav Malyshev schrieb:
> So here we go again - a lot of time spent to write lengthy emails
> about how bad this and that person or PHP Group as a whole is, or to
> hint about multiple problems without getting into details - and when
> it comes to details - no, that's no fun anymore. Should we
On 19.05.2007 20:10, Sebastian Nohn wrote:
Antony Dovgal wrote:
On 19.05.2007 14:27, Sebastian Nohn wrote:
Hi,
I currently get segfaults with 5.2.3-dev when running the the Zend
Framework
0.8.0 Unit Tests:
ok 1860 - testHandleAnonymousArgFunction(Zend_Rest_ServerTest)
ok 1861 - testHandleMult
And I think I repeated myself often enough.
So here we go again - a lot of time spent to write lengthy emails about
how bad this and that person or PHP Group as a whole is, or to hint
about multiple problems without getting into details - and when it comes
to details - no, that's no fun anymo
The issue with this remote url include thingy is that is hard to find
a valid use case ..does anyone has a **real** one ? why it was
I believe there is.
introduced in the first place..?? no, Im not talking about crippling
As I already said, it was never introduced. What was introduced is
st
Antony Dovgal wrote:
> On 19.05.2007 14:27, Sebastian Nohn wrote:
>> Hi,
>>
>> I currently get segfaults with 5.2.3-dev when running the the Zend
>> Framework
>> 0.8.0 Unit Tests:
>>
>> ok 1860 - testHandleAnonymousArgFunction(Zend_Rest_ServerTest)
>> ok 1861 - testHandleMultipleFunction(Zend_Rest_
>> SquirrelMail scripts are designed to work with binary strings. They will
>> have to deal with emails written in many different character sets. In
>> some
>> cases scripts must know string length in bytes and not in symbols. If
>> PHP
>> starts converting email body or message parts, strings won'
Stut wrote:
> This thread has nothing to do with me, (except with regards to my
> interest in PHP6) but in my experience when a task is assigned to a
> group not an individual there is no accountability and no incentive to
> either get it done or pass it to someone who can. IMHO it's better to
> le
Sebastian Bergmann wrote:
Wez Furlong wrote:
I'm going to say it one last time: there are other maintainers.
I'm temporarily too busy, but we have other maintainers.
Please assign bugs to the other maintainers.
Maybe per-extension aliases (such as [EMAIL PROTECTED]) could
help here? This way
Oliver Block wrote:
> Hello Greg,
>
> I would first ask the following question:
>
> Why should the user be prevented to include remote site code?
>
> #1: hoster and users are equal
>
>
> The hoster - as the "person" providing for the php infrastr
Wez Furlong wrote:
> I'm going to say it one last time: there are other maintainers.
> I'm temporarily too busy, but we have other maintainers.
> Please assign bugs to the other maintainers.
Maybe per-extension aliases (such as [EMAIL PROTECTED]) could
help here? This way it would be possible to
Hi Wez,
On 5/19/07, Wez Furlong <[EMAIL PROTECTED]> wrote:
My point is, you can't assign stuff to someone that you know is busy,
without asking them, and then expect to be justified when you complain
that they haven't done anything.
Andrei's point was, you can't keep telling someone that you're
On 19.05.2007 17:59, Tomas Kuliavas wrote:
SquirrelMail scripts are designed to work with binary strings. They will
have to deal with emails written in many different character sets. In some
cases scripts must know string length in bytes and not in symbols. If PHP
starts converting email body or
On 19.05.2007 17:42, Wez Furlong wrote:
My point is, you can't assign stuff to someone that you know is busy,
without asking them, and then expect to be justified when you complain
that they haven't done anything.
Andrei's point was, you can't keep telling someone that you're doing
something, an
>> Hi,
>>
>> Could you make unicode.semantics configurable at PHP_INI_ALL level?
>
> No.
>
>> Or maybe PHP6 has string functions that are not unicode aware?
>
> All string functions are supposed to be able to work with both Unicode and
> binary strings.
> Unicode is just an addition, it doesn't mea
On 5/19/07, Antony Dovgal <[EMAIL PROTECTED]> wrote:
I just want to clarify this situation - either the maintainers are temporarily
busy and will
continue working on their extensions or they have to admit that they won't do
it anymore,
we'll mark the extensions as orphaned and start looking for
My point is, you can't assign stuff to someone that you know is busy,
without asking them, and then expect to be justified when you complain
that they haven't done anything.
Andrei's point was, you can't keep telling someone that you're doing
something, and then get uppity when everyone is waitin
On 19.05.2007 16:22, Tomas Kuliavas wrote:
Hi,
Could you make unicode.semantics configurable at PHP_INI_ALL level?
No.
Or maybe PHP6 has string functions that are not unicode aware?
All string functions are supposed to be able to work with both Unicode and
binary strings.
Unicode is just
Hi,
Could you make unicode.semantics configurable at PHP_INI_ALL level? Or
maybe PHP6 has string functions that are not unicode aware?
--
Tomas
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
On 19.05.2007 14:27, Sebastian Nohn wrote:
Hi,
I currently get segfaults with 5.2.3-dev when running the the Zend Framework
0.8.0 Unit Tests:
ok 1860 - testHandleAnonymousArgFunction(Zend_Rest_ServerTest)
ok 1861 - testHandleMultipleFunction(Zend_Rest_ServerTest)
ok 1862 - testHandleMethodNoArg
Hello Greg,
I would first ask the following question:
Why should the user be prevented to include remote site code?
#1: hoster and users are equal
The hoster - as the "person" providing for the php infrastructure - is trying
to prevent the user
On 19.05.2007 06:23, Wez Furlong wrote:
On 5/18/07, Antony Dovgal <[EMAIL PROTECTED]> wrote:
I can see 47 open bug reports assigned to you (this is bugs.php.net only, there
are also 25+ bug reports in PECL).
Most of the reports are COM, PDO or streams related. Do you still maintain
these exten
Hi,
I currently get segfaults with 5.2.3-dev when running the the Zend Framework
0.8.0 Unit Tests:
ok 1860 - testHandleAnonymousArgFunction(Zend_Rest_ServerTest)
ok 1861 - testHandleMultipleFunction(Zend_Rest_ServerTest)
ok 1862 - testHandleMethodNoArgs(Zend_Rest_ServerTest)
ok 1863 - testHandleM
2007/5/18, Stanislav Malyshev <[EMAIL PROTECTED]>:
Sane hosters do not rely on general-purpose language to provide
security, they use OS and hardware designed for exactly that purpose. ;)
unfortunately hosters has to equilibrate security vs/usability for
their customers.. so disaloowing 100% acc
Dear developer _team_,
It's a pity that you deal so with problems..
Your _team_ has done so many wonderful things, but only because you
have worked as _team_ together and not against each other. Don't
forget them!
You don't aid the PHP Project if you only look for yourself and not to
you
Stanislav Malyshev schrieb:
> What you see as a war, other see as a discussion. I think if you tried
> viewing it as figuring out common solution and discussing options and
> not combat it would make sense to you too, probably.
Maybe I read a different internals list. Just read the World vs. Pierre
Everyone watching the PHP internals list can see how true it is. One war
after another, because some PHP developers are more equal than others.
What you see as a war, other see as a discussion. I think if you tried
viewing it as figuring out common solution and discussing options and
not comba
On 19/05/2007, at 1.47, Cristian Rodriguez wrote:
2007/5/18, Greg Beaver <[EMAIL PROTECTED]>:
What about permanently removing this (mis) "feature" ?? , Im yet to
hear any valid reason or example to continue to permit this remote
include thingy, all examples I have seen are bogus and broken
Ohh BTW. I am aware of many security problems in current PHP, actually
the whole world
is, because there are still a lot of "local" vulnerabilities unfixed
We seem to be in a disagreement about what security vulnerability is.
However, it is not very important since bugs are to be fixed anyway.
Stanislav Malyshev schrieb:
>> Yes I think you do not need to repeat that there is no such thing as a
>> PHP leadership.
>
> I don't need to repeat it because I never said that and it's not true.
> There's difference between leadership and not having disagreement or
> discussion, even if some fail
> If you are aware of some security problems in current PHP sources you
> are as always welcome to report them and they will be fixed. I think
> everybody here as always are thankful for any help we can get.
Ohh BTW. I am aware of many security problems in current PHP, actually
the whole world
is,
On 19/05/2007, at 4.23, Wez Furlong wrote:
On 5/18/07, Antony Dovgal <[EMAIL PROTECTED]> wrote:
I can see 47 open bug reports assigned to you (this is
bugs.php.net only, there are also 25+ bug reports in PECL).
Most of the reports are COM, PDO or streams related. Do you still
maintain these
Yes I think you do not need to repeat that there is no such thing as a
PHP leadership.
I don't need to repeat it because I never said that and it's not true.
There's difference between leadership and not having disagreement or
discussion, even if some fail to see it.
--
Stanislav Malyshev, Ze
> I wonder if you actually aware of the fact that there's no such single
> entity as "PHP developers" and each of them is entirely different living
> human? And these humans sometimes are in disagreement and some of them
> are wrong? And then the thing called "discussion" happens and it's not
> al
At the moment they are very predictable. You send them a security bug
and first they try to tell you that you are totally wrong (because
you made a
I wonder if you actually aware of the fact that there's no such single
entity as "PHP developers" and each of them is entirely different living
hum
Stanislav Malyshev wrote:
>> allow_url_(include|fopen) applies to them. As such, because
>> allow_url_(include|fopen) are disabled by default in PHP 6, this will
>
> Disabling allow_url_fopen by default is the second mistake. What's wrong
> with it? Wasn't the sole reason for having allow_url_inc
Christian,
I suggest that you simply stop arguing with PHP developers about
security issues.
The problem is that they don't understand them. They are too arrogant.
They actually
believe they know everything better.
In such a situation there is only one healing. Stop giving them tips and
let them
40 matches
Mail list logo
