FreeBSD ports which are currently scheduled for deletion

Miroslav Lachman 000.fbsd at quip.cz
Wed Feb 8 13:10:10 UTC 2012


Doug Barton wrote:
> On 02/07/2012 17:13, Svyatoslav Lempert wrote:
>> 2012/2/7<linimon at freebsd.org>:
>>> The ports, and the reason and date that they have been scheduled
>>> for removal, are listed below.  If no one has stepped forward before
>>> that time to propose a way to fix the problems (such as via a PR),
>>> the ports will be deleted.
>>>
>>> portname:           lang/php52
>>> description:        PHP Scripting Language
>>> maintainer:         admin at lissyara.su
>>> deprecated because: PHP 5.2 series is not supported anymore, migrate now
>>> expiration date:    2012-03-01
>>> build errors:       none.
>>> overview:           http://portsmon.FreeBSD.org/portoverview.py?category=lang&portname=php52
>>>
>>
>> Why so much wish to remove lang/php52?
>
> There are numerous security vulnerabilities in it, and so far no one has
> stepped up to thoroughly address them. If you'd like to volunteer to
> maintain this version that would be great. Just submit the PR with the
> following updates:
>
> All security patches backported
> Fix the dependent ports (php52-*) to use the same patches as lang/php52
>
> That's off the top of my head ... there may be other problems.

Are you sure there are any known security vulnerabilities not fixed in 
lang/php52? I think that current maintainer Alex Keda 
<admin at lissyara.su> is doing exelent work with backporting all needed 
patches to have working and secure PHP 5.2.x in FreeBSD ports tree, so 
there is no need to remove this port.

Migrating from 5.2 to 5.3 or any future version is not possible without 
modification of PHP scripts. Webhosting servers with old applications 
must stay with 5.2 until all clients migrate their code to newer version.

The last version of PHP 4.4 was released 07-Aug-2008 and is still in 
ports tree, last version of 5.2 was released 06-Jan-2011 and is well 
maintained with security patches.

I don't see any good reason to remove the port, which have active 
maintainer fixing all known problems / security vulnerabilities.

Miroslav Lachman


More information about the freebsd-ports mailing list