Koozali.org: home of the SME Server
		Legacy Forums => Experienced User Forum => Topic started by: Greg Bellamy on March 09, 2002, 03:40:25 PM
		
			
			- 
				Does anyone know if the PHP 4.06 upgrade that is in the HOWTO's is included with this batch that has problems?
 
 If so what is the fix?
 
 Thanks,
 Greg Bellamy
- 
				Dan Brown has a howto for 4.1.1 on SME 5.1.2 at
 http://www.familybrown.org/howtos/php-upgrade-howto-sme512.html
 (I can't see why this wont work on ES 4.1.2)
 
 He also has one for 4.0.6 on ES 4.1.2 at
 http://www.familybrown.org/howtos/php-upgrade-howto.html
 
 Trevor B
 
 Greg Bellamy wrote:
 >
 > Does anyone know if the PHP 4.06 upgrade that is in the
 > HOWTO's is included with this batch that has problems?
 >
 > If so what is the fix?
 >
 > Thanks,
 > Greg Bellamy
- 
				Trevor,
 I have applied the 4.06 update according to Dan Brown's excellent HOWTO to my 4.1.2 servers. The question  I have is about the rash of security problems right now with php in general and do they apply to the version of php that I am running. Since I cannot use blades on a 4.1.2 server, what would the fix be? See below for the message about these speific packages. It seems to say that the security fix has been applied to the packages. Or am I wrong?
 Thanks for any help and enlightenment.
 Later,
 Greg Bellamy
 
 From the website where the php files are from:
 
 "PHP 4 RPMs
 The PHP 4.0.6 packages found here should not be vulnerable to the file upload security bug because the fix for PHP 4.0.6 has been applied.
 
 PHP 4.1.x packages are not ready yet. I'm (slowly) working on it.
 
 This site aims to provide ready-to-run, modular PHP packages for Red Hat Linux 6.2 systems.
 
 The packages are fairly similar to Red Hat's PHP packages, except for:
 
 The update frequency is higher.
 The base "php" package doesn't contain a stand-alone PHP binary (that one is put in the "php-standalone" package).
 GD-support is not compiled directly into PHP, but is available as an optional feature (the "php-gd" sub-package).
 More facilities (like GD with GIF-support, sybase_ct, pdflib) are available.
 One PHP extension (which Red Hat 7's PHP includes) is not included in this set of packages: PHP's DBA extension is not available, due to numerous problems getting db2/db3 installed on Red Hat 6.x systems.
 What kind of system do you have?
 
 Users with AMD Athlon, Pentium Pro or Pentium II/III/IIII CPUs: go here.
 Users with older Pentiums or AMD CPUs: go here.
 New versions of the PHP 4 packages were uploaded on Thu, 28 Feb 2002 14:47:17 GMT. You may subscribe to bulletins about updates of the PHP RPM packages."