hardened-php-announce Mailing List for Hardened PHP
Brought to you by:
sesser
Menu
▾
▴
hardened-php-announce — New versions of Hardened PHP will be announced on this list
You can subscribe to this list here.
| 2004 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(1) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|---|
|
From: Stefan E. <s....@e-...> - 2004-05-16 00:40:18
|
------------------------------------------------------------------------
_ _ _ _ ___ _ _ ___
| || | __ _ _ _ __| | ___ _ _ ___ __| | ___ | _ \| || || _ \
| __ |/ _` || '_|/ _` |/ -_)| ' \ / -_)/ _` ||___|| _/| __ || _/
|_||_|\__,_||_| \__,_|\___||_||_|\___|\__,_| |_| |_||_||_|
------------------------------------------------------------------------
The Hardened-PHP project team is pleased to announce the release of
version 0.1.1 of our PHP security hardening patch. This new Hardened-PHP
release is the first one that is publicly announced and is considered
stable on atleast linux systems.
Hardened-PHP is a patch against the PHP codebase which adds security
hardening features to it to protect servers on the one hand against a
number of well known problems in hastily written PHP scripts and on
the other hand against potential unknown vulnerabilities within the
engine itself.
Hardened-PHP provides:
+ Protection of the Zend Memory Manager with canaries
+ Protection of Zend Linked Lists with canaries
+ Protection against internal format string exploits
+ Protection against arbitrary code inclusion
+ Syslog logging of attackers IP
We consider Hardened-PHP 0.1.1 to be the best version of Hardened-PHP
available and we strongly recommend that users of older versions upgrade
as soon as possible.
Hardened-PHP is available for download via HTTP from
http:///www.hardened-php.net/download.php
The distribution file name is:
hardened-php-4.3.6-0.1.1.patch.gz
MD5 checksum: 62f7d49b89c93dace247c2bc189b7503
Yours,
The Hardened-PHP Project Team...
http://www.hardened-php.net
|
