Jump to content

Recommended Posts

Posted

I'm interested in when PHP5 might be getting implemented on the shared hosting servers. There are a couple threads dating a couple months back that hesitate to give a clear estimate as to when this may happen; I'm curious, has any progress been made since then?

 

Considering the impressive support and pricing this company has to offer, I am not one to complain; however, I do have a few different web sites here, and it would be fantastic if PHP5 were ready and waiting for me when I finish with my latest projects a few months from now ;-)

 

Thanks,

- Jon

Posted
At this point we have no concrete migration path to PHP5.

 

We recently upgraded to 4.3.10 however.

 

Bill

 

Sometimes exploits are found in programs such as these and those vulnerabilities are just what hackers need. Not saying to upgrade just keep that in mind.

Posted

We also have to keep in mind that with over 31,000 customers, making that kind of upgrade could disable scripts that our customers are running. Jumping into that blindly can be a bad idea.

Posted
We also have to keep in mind that with over 31,000 customers, making that kind of upgrade could disable scripts that our customers are running.  Jumping into that blindly can be a bad idea.

 

Ofcouse, I know the phpBB bulletin board software isn't compatible with php5 yet. although there is a modifed one that is. The next official release due out shortly should be compatible.

Posted

Yeah, having 31,000 -ish support tickets all at once would probably suck :)

On a related note, I read that in PHP5, registered globals are off by default. If TCH upgrades, will register globals be set to "off?" That's probably going to be the biggest issue with most people - having to change $varaible to $_REQUEST[variable] in every form script.

Posted

Billy, you should use register_globals off all the time and make your scripts compatible with it. That's the best way to code PHP. If not for making your scripts more secure, at least it will make them compatible with everyone else, because they will work whether register_globals is on or off and since register_globals will eventually be turned off by web hosts due to possible security implications, I'd say you have nothing to lose, only to gain :)

Posted

Dear Raul -

Thanks for the advice - I will take it seriously. I've heard the same thing from lots of other experts, too!

Thanks,

Billy

Posted

Dark, you cite that the possibility of exploits being found as a reason to consider upgrading to PHP 5. Keep in mind, however, that upgrading to a newer, less widely-used, and less battle-tested program is hardly a security upgrade! That is why they are still rolling out updates to PHP 4.x to deal with newly-discovered security holes without forcing people to upgrade to the latest and greatest.

Posted
Dark, you cite that the possibility of exploits being found as a reason to consider upgrading to PHP 5. Keep in mind, however, that upgrading to a newer, less widely-used, and less battle-tested program is hardly a security upgrade! That is why they are still rolling out updates to PHP 4.x to deal with newly-discovered security holes without forcing people to upgrade to the latest and greatest.

 

My point was, all software is subject to exploits. Say they never upgrade then we will all be vulnerable. I do however understand where they are coming from, I mean I wouldn't want 31,000 support tickets in my inbox. I think things are fine the way they are I was only voicing an opinion.

Posted
My point was, all software is subject to exploits. Say they never upgrade then we will all be vulnerable. I do however understand where they are coming from, I mean I wouldn't want 31,000 support tickets in my inbox. I think things are fine the way they are I was only voicing an opinion.

 

I think most of us are looking forward to PHP5 not because it will be "safer," mind you, but because many new functions have been added, including but not limited to str_ireplace(), str_split(), and file_put_contents(). Also, many things have been overhauled, like object handling and XML parsing. On the other hand, it would be fabulous to find out that it is more secure, but that remains to be seen. Probably like you, I am cautiously optimistic.

Posted

Didn't mean that to sound like a smack-down, Dark -- was just voicing a different perspective.

 

As Bill noted above, TCH is indeed continuing to implement patches to v.4 as needed, since this is a much less laborious process than going from 4 to 5. So it's not as if we're not able to get necessary security updates to PHP 4.

 

And, yes, I am eager to start using PHP 5 myself -- but more eager to keep my sites stable and secure at this point.

Posted
Didn't mean that to sound like a smack-down, Dark -- was just voicing a different perspective.

 

As Bill noted above, TCH is indeed continuing to implement patches to v.4 as needed, since this is a much less laborious process than going from 4 to 5. So it's not as if we're not able to get necessary security updates to PHP 4.

 

And, yes, I am eager to start using PHP 5 myself -- but more eager to keep my sites stable and secure at this point.

 

I'd like to use it but right now I'm content with the current version. My forum will not work with php5 at the present.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...