PHP 4 Upgraded for Security

Posted April 27th, 2007 by Robert Mathews in Tech Corner. Tags: php, security, server updates.

We’ve updated PHP 4 on our servers to cover six recently identified security issues. Users shouldn’t notice any changes.

An upgrade for PHP 5 is also in progress. After testing, we actually rolled out the update onto our servers for a short time, until a customer reported an unusual problem with vBulletin posts getting cut off when they contain an odd number of apostrophes shortly afterward. This problem appears to be related to the update, so we have rolled back to the previous version of PHP 5 while we investigate this. (This kind of thing is very rare: this is the first security update in over year that has caused a problem. We have a suite of “regression tests” that we use to test PHP upgrades, and there wasn’t a general problem with it. We’ll follow up with more details when we know more.)

By the way, if you’re unfamiliar with what we mean by a “security update”, this page will help.

You can follow any responses to this entry through the RSS 2.0 feed. You can leave a comment on the bottom of this page.

No Comments

Be the first to comment on this entry.

Add a comment

Fields in bold are required. Email addresses are never published or distributed.

Some HTML code is allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>
URIs must be fully qualified (eg: http://www.domainname.com) and all tags must be properly closed.

Line breaks and paragraphs are automatically converted.

Please keep comments relevant. Off-topic, offensive or inappropriate comments may be edited or removed.