Header Toetsenbord
Ibuildings Blogs
Search Nederlands | English
Jobs at Ibuildings
Are you passionate about PHP and do you thrive in a culture that values teamwork? Then check out our vacancies.
PHP Events
Tutorial: Source Control
9th September, Leeds
Read More

Seminar: Enterprise PHP
10th September, Dublin
Read More





Tag cloud

Subscribe to this blog

Home  ->  Ibuildings Blogs

Ivo's blog

ing. Ivo Jansch ing. Ivo Jansch
Technical Director / CTO
 Zend Certified Engineer
Ivo is the CTO of Ibuildings. In this role he implements company strategy regarding tools, technology and development processes. Ivo is also a liaison for several key customers and partners, and a regular speaker at conferences.

Tuesday, July 8. 2008

T minus one

It's July the 8th.

Today I realized that we're exactly one month away from 8-8-8, the final blow to PHP4.

Last december, the community already stopped support for PHP4, but until the 8th of August, at least security fixes would still be done. If nothing has changed in the meantime, and I didn't read any evidence to the contrary, in 31 days from now,security fixes will no longer be provided for PHP4.

While most of the people I meet have long switched to PHP5, I encounter the occasional development team that still has massive amounts of live code running on PHP4.

If you are one of those few, let me draw you an ugly picture.

What if in 2 months time, evil hackers will find a bug in PHP4 that is exploitable?

What if they write a spider that crawls the internet in search for applications that run PHP4?

What if they target all those sites with malicious code?

What if indeed there will be no fix for this exploit?

What are you going to do? (besides running around in blind panic)

For all we know, evildoers might already have the exploits available, but are waiting until after 8-8-8 so they are sure that a fix is hard to get and the impact will be bigger.

I'm not trying to scare you.

No wait, I am.

Don't let 8-8-8 become the PHP community's 6-6-6 and abandon PHP4 while you still can.

Now this wouldn't be a corporate blog if I wouldn't shamelessly state that if you need help with that, you could contact us. But also, you can check the migration section in the PHP manual for relevant info.

You have 31 days left.


Posted by Ivo Jansch at 19:00 | Comments (3) | Trackbacks (0)
Defined tags for this entry: , , , ,

Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

I wonder how long after 8-8-08 it'll be until CERT publicizes a security flaw in PHP4?
#1 Bill Karwin (Homepage) on 2008-07-08 19:58 (Reply)
Well so i hope also the last stupid admins notice ohh it´s time to upgrade to PHP 5 or direct 6 ?

I know som who still run PHP 4 and if i have to code PHP 4 compatible again i always get pissed off.
#2 Johny (Homepage) on 2008-07-09 11:45 (Reply)
PHP4 have to go away

only PHP5
#3 Paul M (Homepage) on 2008-07-18 18:51 (Reply)

Add Comment

BBCode format allowed
Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.
Standard emoticons like :-) and ;-) are converted to images.
E-Mail addresses will not be displayed and will only be used for E-Mail notifications

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA
 
 
sitemap | contact | privacy | general conditions | © 1999 - 2008 Ibuildings BV