<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">Furthermore, vBulletin looks like a
separate, for-pay product. I guess this particular flaw would
have been there no matter what the host platform OS was.<br>
<br>
On 7/21/13 5:05 PM, Jim Kinney wrote:<br>
</div>
<blockquote
cite="mid:CAEo=5Pxb8xxFCcLFw7ntYDD86zyX8xwCT8-fOvZ9bEjptfpoHg@mail.gmail.com"
type="cite">
<div dir="ltr">
<div>FACEBOOK IS SECURE?!?!?!?! when did that happen?<br>
<br>
</div>
PHP, according to many security people far more knowledgeable
than me, continues to suffer from design flaws in the core. Now
add in the rampant proliferation of poorly coded add-ons and you
get the mess that is PHP. It make Java look good.<br>
</div>
<div class="gmail_extra"><br>
<br>
<div class="gmail_quote">On Sun, Jul 21, 2013 at 4:44 PM, Andy
Borgmann <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:andy@borgmann.me" target="_blank">andy@borgmann.me</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr">Where do you see this being a PHP
non-security. It sounds like it was an updated version of
vBulletin's admin panel that had a security flaw. Even if
vBulletin is coded in PHP, I don't see why blaming PHP as
a whole is warranted in this case and not just vBulletin.
PHP seems secure enough or Facebook.</div>
<div class="gmail_extra"><br clear="all">
<div>
<div><b><br>
</b></div>
<div><b>--</b></div>
<div><b>Andy Borgmann</b><br>
<br>
<div>E-mail: <a moz-do-not-send="true"
href="mailto:andy@borgmann.me" target="_blank"><font
color="#990000">andy@borgmann.me</font></a>
<br>
Cell Phone: <font color="#990000"><a
moz-do-not-send="true"
href="tel:%28404%29%20492-6527"
value="+14044926527" target="_blank">(404)
492-6527</a></font> </div>
<div>Personal Website: <a moz-do-not-send="true"
href="http://andy.borgmann.me/?r=email"
target="_blank"><font color="#990000">http://andy.borgmann.me/</font></a></div>
<div><br>
"<i>Preach the Word; be prepared in season and out
of season; correct, <br>
rebuke and encourage - with great patience and
careful instruction.</i>" - 2Timothy 4:2</div>
</div>
</div>
<div>
<div class="h5">
<br>
<br>
<div class="gmail_quote">On Sun, Jul 21, 2013 at 3:47
PM, JD <span dir="ltr"><<a
moz-do-not-send="true"
href="mailto:jdp@algoloma.com" target="_blank">jdp@algoloma.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
<div>On 07/21/2013 01:27 PM, James Taylor wrote:<br>
> Ubuntu is a linux distro, isn't it?<br>
> I keep forgetting because it keeps looking
so much like a Microsoft product....<br>
> -jt<br>
><br>
><br>
</div>
<div>>>>> Edward Holcroft <<a
moz-do-not-send="true"
href="mailto:eholcroft@mkainc.com"
target="_blank">eholcroft@mkainc.com</a>>
7/21/2013 12:49 PM >>><br>
> If this was Microsoft I'd be snickering
about their poor security ... not<br>
> good at all.<br>
><br>
> <a moz-do-not-send="true"
href="http://www.omgubuntu.co.uk/2013/07/ubuntu-forum-hacked-users-advised-to-change-passwords"
target="_blank">http://www.omgubuntu.co.uk/2013/07/ubuntu-forum-hacked-users-advised-to-change-passwords</a><br>
><br>
<br>
</div>
This is less about Linux security and more about
php non-security. Talk to<br>
security pros about php. It was an eye opener for
me.<br>
<div>
<div><br>
_______________________________________________<br>
Ale mailing list<br>
<a moz-do-not-send="true"
href="mailto:Ale@ale.org" target="_blank">Ale@ale.org</a><br>
<a moz-do-not-send="true"
href="http://mail.ale.org/mailman/listinfo/ale"
target="_blank">http://mail.ale.org/mailman/listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a moz-do-not-send="true"
href="http://mail.ale.org/mailman/listinfo"
target="_blank">http://mail.ale.org/mailman/listinfo</a><br>
</div>
</div>
</blockquote>
</div>
<br>
</div>
</div>
</div>
<br>
_______________________________________________<br>
Ale mailing list<br>
<a moz-do-not-send="true" href="mailto:Ale@ale.org">Ale@ale.org</a><br>
<a moz-do-not-send="true"
href="http://mail.ale.org/mailman/listinfo/ale"
target="_blank">http://mail.ale.org/mailman/listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a moz-do-not-send="true"
href="http://mail.ale.org/mailman/listinfo"
target="_blank">http://mail.ale.org/mailman/listinfo</a><br>
<br>
</blockquote>
</div>
<br>
<br clear="all">
<br>
-- <br>
-- <br>
James P. Kinney III<br>
<i><i><i><i><br>
</i></i></i></i>Every time you stop a school, you will
have to build a jail. What you gain at one end you lose at the
other. It's like feeding a dog on his own tail. It won't fatten
the dog.<br>
- Speech 11/23/1900 Mark Twain<br>
<i><i><i><i><br>
<a moz-do-not-send="true"
href="http://electjimkinney.org" target="_blank">http://electjimkinney.org</a><br>
<a moz-do-not-send="true"
href="http://heretothereideas.blogspot.com/"
target="_blank">http://heretothereideas.blogspot.com/</a><br>
</i></i></i></i>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Ale mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Ale@ale.org">Ale@ale.org</a>
<a class="moz-txt-link-freetext" href="http://mail.ale.org/mailman/listinfo/ale">http://mail.ale.org/mailman/listinfo/ale</a>
See JOBS, ANNOUNCE and SCHOOLS lists at
<a class="moz-txt-link-freetext" href="http://mail.ale.org/mailman/listinfo">http://mail.ale.org/mailman/listinfo</a>
</pre>
</blockquote>
<br>
</body>
</html>