Date: Wed, 08 Feb 2012 13:54:47 +0100 From: Miroslav Lachman <000.fbsd@quip.cz> To: Doug Barton <dougb@FreeBSD.org> Cc: Svyatoslav Lempert <svyatoslav.lempert@gmail.com>, freebsd-ports@freebsd.org, Alex Dupre <ale@FreeBSD.org> Subject: Re: FreeBSD ports which are currently scheduled for deletion Message-ID: <4F327097.6080006@quip.cz> In-Reply-To: <4F31CEEC.5020300@FreeBSD.org> References: <201202070829.q178TNZw081740@portsmonj.FreeBSD.org> <CAERaTk_BirOS8rCEbT4HBm75EUJ2jqcu3E0ESVUrQGKnHxv5Jw@mail.gmail.com> <4F31CEEC.5020300@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Doug Barton wrote: > On 02/07/2012 17:13, Svyatoslav Lempert wrote: >> 2012/2/7<linimon@freebsd.org>: >>> The ports, and the reason and date that they have been scheduled >>> for removal, are listed below. If no one has stepped forward before >>> that time to propose a way to fix the problems (such as via a PR), >>> the ports will be deleted. >>> >>> portname: lang/php52 >>> description: PHP Scripting Language >>> maintainer: admin@lissyara.su >>> deprecated because: PHP 5.2 series is not supported anymore, migrate now >>> expiration date: 2012-03-01 >>> build errors: none. >>> overview: http://portsmon.FreeBSD.org/portoverview.py?category=lang&portname=php52 >>> >> >> Why so much wish to remove lang/php52? > > There are numerous security vulnerabilities in it, and so far no one has > stepped up to thoroughly address them. If you'd like to volunteer to > maintain this version that would be great. Just submit the PR with the > following updates: > > All security patches backported > Fix the dependent ports (php52-*) to use the same patches as lang/php52 > > That's off the top of my head ... there may be other problems. Are you sure there are any known security vulnerabilities not fixed in lang/php52? I think that current maintainer Alex Keda <admin@lissyara.su> is doing exelent work with backporting all needed patches to have working and secure PHP 5.2.x in FreeBSD ports tree, so there is no need to remove this port. Migrating from 5.2 to 5.3 or any future version is not possible without modification of PHP scripts. Webhosting servers with old applications must stay with 5.2 until all clients migrate their code to newer version. The last version of PHP 4.4 was released 07-Aug-2008 and is still in ports tree, last version of 5.2 was released 06-Jan-2011 and is well maintained with security patches. I don't see any good reason to remove the port, which have active maintainer fixing all known problems / security vulnerabilities. Miroslav Lachman
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4F327097.6080006>