Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Greg Beaver's Blog:
PEAR 1.4.x branch is settling into comfortable stability
Feb 08, 2006 @ 06:40:27

In this latest blog entry, Greg Beaver talks about the "settling in" that the latest PEAR version branch, 1.4.x, is finally getting around to.

I'm happy to report that the PEAR 1.4.x branch is finally settling in. All of the issues reported since the release of PEAR 1.4.6 have been rare edge cases that won't affect the greater majority of users. I give the unit test suite that I've been slaving over full credit for this accomplishment, as it has caught several re-introduced problems when fixing newly discovered bugs. If you aren't unit-testing, you are wasting your future time, not to mention your end-users' time!

Also mentioned are some of the issues that have been noticed since the release of 1.4.6 (including issues with version_compare, problems with the packagefilemanager, "pear" command was ignoring safe_mode/open_basedir restrictions), but they've already been corrected. There's also been the addition of unit testing functionality that allows you to run tests post-install automatically.

tagged: pear branch 1.4.x 1.4.6 issues problems corrected pear branch 1.4.x 1.4.6 issues problems corrected

Link:

Greg Beaver's Blog:
PEAR 1.4.x branch is settling into comfortable stability
Feb 08, 2006 @ 06:40:27

In this latest blog entry, Greg Beaver talks about the "settling in" that the latest PEAR version branch, 1.4.x, is finally getting around to.

I'm happy to report that the PEAR 1.4.x branch is finally settling in. All of the issues reported since the release of PEAR 1.4.6 have been rare edge cases that won't affect the greater majority of users. I give the unit test suite that I've been slaving over full credit for this accomplishment, as it has caught several re-introduced problems when fixing newly discovered bugs. If you aren't unit-testing, you are wasting your future time, not to mention your end-users' time!

Also mentioned are some of the issues that have been noticed since the release of 1.4.6 (including issues with version_compare, problems with the packagefilemanager, "pear" command was ignoring safe_mode/open_basedir restrictions), but they've already been corrected. There's also been the addition of unit testing functionality that allows you to run tests post-install automatically.

tagged: pear branch 1.4.x 1.4.6 issues problems corrected pear branch 1.4.x 1.4.6 issues problems corrected

Link:

Greg Beaver's Blog:
Why it is very important to upgrade to PEAR 1.4.6 from PEAR 1.3.x
Jan 09, 2006 @ 06:41:18

Greg Beaver has an advisory message posted on his blog today about why it's imporatant to upgrade PEAR from 1.3.x to the latest, 1.4.6.

PEAR 1.4.6 was just released at pear.php.net (http://pear.php.net/PEAR). This is a minor bugfix release and complete details are available at pear.php.net, but I must stress two points with extreme seriousness:

  • PEAR 1.4.6 fixes make install-pear INSTALL_ROOT=/rpm/packaging and introduces the --packagingroot option to install, which works like --installroot worked in PEAR 1.3.x
  • PEAR 1.3.x has several serious bugs and at least 2 serious security vulnerabilities. Using PEAR 1.3.x on a production machine is EXTREMELY dangerous

He goes on to discuss further why that second point is particularly dangerous, including several unpublished serious bugs. You can download the latest PEAR packages from the main PEAR site...

tagged: important upgrade PEAR 1.3.x 1.4.6 latest version security bugs important upgrade PEAR 1.3.x 1.4.6 latest version security bugs

Link:

Greg Beaver's Blog:
Why it is very important to upgrade to PEAR 1.4.6 from PEAR 1.3.x
Jan 09, 2006 @ 06:41:18

Greg Beaver has an advisory message posted on his blog today about why it's imporatant to upgrade PEAR from 1.3.x to the latest, 1.4.6.

PEAR 1.4.6 was just released at pear.php.net (http://pear.php.net/PEAR). This is a minor bugfix release and complete details are available at pear.php.net, but I must stress two points with extreme seriousness:

  • PEAR 1.4.6 fixes make install-pear INSTALL_ROOT=/rpm/packaging and introduces the --packagingroot option to install, which works like --installroot worked in PEAR 1.3.x
  • PEAR 1.3.x has several serious bugs and at least 2 serious security vulnerabilities. Using PEAR 1.3.x on a production machine is EXTREMELY dangerous

He goes on to discuss further why that second point is particularly dangerous, including several unpublished serious bugs. You can download the latest PEAR packages from the main PEAR site...

tagged: important upgrade PEAR 1.3.x 1.4.6 latest version security bugs important upgrade PEAR 1.3.x 1.4.6 latest version security bugs

Link: