[arch] introducing suhosin: a security-extension for php
Pierre Schmitz
pierre at archlinux.de
Sun Nov 5 07:26:03 EST 2006
Hi Archers,
if you are running a web-server with php you might want to have a look at
suhosin. It calls itself an "advanced protection system for PHP".
A lot of the last found holes in PHP and some PHP-applications did not affect
php-installations with suhosin-protection.
You`ll find more information on the following sites:
http://www.hardened-php.net/suhosin/index.html
http://www.hardened-php.net/suhosin/a_feature_list.html
http://www.hardened-php.net/suhosin/why.html
http://blog.php-security.org/
Yesterday I decided to test this out. Till now it did not break anything and
the protection seems to work. And the best thing is: it is binary-compatible
to existing modules and you do not have a noticeable loss of performance.
Suhosin consists of two independent parts:
1) a patch against php
http://aur.archlinux.org/packages.php?do_Details=1&ID=7398
2) a php-extension
http://aur.archlinux.org/packages.php?do_Details=1&ID=7399
If everything works well I`ll put them into community (bcause I`ll build them
anyway)
Pierre
--
http://www.archlinux.de
More information about the arch
mailing list