I do not breathe your politics
"Comment is free but facts are sacred." (C.P. Scott)
Tuesday, February 21, 2006
From the department of self-fulfilling prophecies
OK, so a little funny news, brought to my attention by Tim.
(It's a programmer thing. Feel free to ignore this one. I'll be back to talking about politicians you've never heard of shortly.)
From vnunet: Linux worm turns on Mambo and PHP
Security experts today warned of a Linux network worm that exploits holes in the Mambo content management system and the PHP XML-RPC library.Unfortunately when you mix something as flexible as XML-RPC with something as half-arsed as the PHP security model, something like this is bound to happen. "The main component of the Mare.D worm is written in C and compiled with the GNU C compiler," said F-Secure researcher Gergely Erdelyi.If it's a PHP/XML-RPC worm, should it not be written in PHP? It just goes to show: if you want to do anything really interesting in PHP you have to write it in C and link it in. posted by Michael at 2/21/2006 05:41:00 PM |