| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 17 Jun 2006 11:06:03 +1200 From: "Bojan Zdrnja" <bojan.zdrnja@...il.com> To: "Darren Reed" <avalon@...igula.anu.edu.au> Cc: bugtraq@...urityfocus.com Subject: Re: PHP security (or the lack thereof) On 6/16/06, Darren Reed <avalon@...igula.anu.edu.au> wrote: > > From my own mail archives, PHP appears to make up at least 4% > of the email to bugtraq I see - or over 1000 issues since 1995, > out of the 25,000 I have saved. > > People complain about applications like sendmail...in the same > period, it has been resopnsible for less than 200. > > Do we have a new contender for worst security offender ever > written ? Well, PHP is a programming language and Sendmail is an application - I'd say you are comparing apples and oranges here. If you really want to compare applications, take phpBB for example (which is the winner in this case), but I don't think it makes much sense looking for a new contender for worst security offender ever written ... Bojan
Powered by blists - more mailing lists