hosted by liquidweb


Go Back   Web Hosting Talk : Web Hosting Main Forums : Hosting Security and Technology : Suhosin patch or extension with zend optimizer
Reply

Forum Jump

Suhosin patch or extension with zend optimizer

Reply Post New Thread In Hosting Security and Technology Subscription
 
Send news tip View All Posts Thread Tools Search this Thread Display Modes
  #1  
Old
Web Hosting Master
 
Join Date: Mar 2004
Posts: 1,000

Suhosin patch or extension with zend optimizer


I have been wondering about the difference between Suhosin Patch and Extension? For example which one of them I should install with PHP 5.2.17 with Xcache 1.3.1 and Zend Optimizer 3.3.0.a? Should it be Suhosin Extension 0.9.32.1? Is Patch version PHP version specific Suhosin Patch 0.9.10 for PHP 5.3.4/5.3.3 and Suhosin Patch 0.9.7 in my case for PHP 5.2.17?

I also couldnt understand the clear difference between Patch and Extension from security point, how do they differ from each other?

Quote:
Suhosin comes in two independent parts, that can be used separately or in combination.
Quote:
The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format string vulnerabilities and the
Quote:
second part is a powerful PHP extension that implements all the other protections.
Is that correct that according to http://www.hardened-php.net/suhosin/a_feature_list.html
Patch has all of Extension features + Engine Protection features?

__________________
Best Regards,
Namesniper



Sponsored Links
  #2  
Old
Problem Solver
 
Join Date: Mar 2003
Location: California USA
Posts: 13,168
You need both if you want to be fully secured. The extension includes a majority of the security features. The patch applies security improvements to the core php binary that the extension cannot do.

__________________
Steven Ciaburri | Proactive Linux Server Management - Rack911.com
System Administration Extraordinaire | Follow us on twitter:@Rack911Labs
Managed Servers (AS62710), Server Management, and Security Auditing.
www.HostingSecList.com - Security notices for the hosting community.

  #3  
Old
Web Hosting Master
 
Join Date: Mar 2004
Posts: 1,000
Quote:
Originally Posted by Steven View Post
You need both if you want to be fully secured. The extension includes a majority of the security features. The patch applies security improvements to the core php binary that the extension cannot do.
But at the same time the Patch will most likely cause seg fault for Zend Optimizer/xcache/etc?

__________________
Best Regards,
Namesniper

Sponsored Links
Reply

Similar Threads
Thread Thread Starter Forum Replies Last Post
Zend Optimizer and Extension Manager cPanel Troubles hostchunk Hosting Security and Technology 2 01-29-2011 06:14 PM
recompile php with Suhosin Patch Gary4gar Programming Discussion 14 09-23-2010 05:00 AM
How do i remove suhosin-0.9.24 extension ? Gazza-t Hosting Security and Technology 3 12-11-2008 01:07 PM
Suhosin Extension or Suhosin Patch Costaud Hosting Security and Technology 6 03-19-2008 11:17 PM
Zend Optimizer LP560 Hosting Security and Technology 1 06-26-2005 08:22 PM

Related posts from TheWhir.com
Title Type Date Posted
Drupal Tells Users to Assume Drupal 7 Websites are Compromised Web Hosting News 2014-10-30 10:14:12
Rush to Patch Heartbleed Infects Previously Unaffected Servers Web Hosting News 2014-05-09 15:31:41
WHMCS Security Issue Allows for Information Disclosure Web Hosting News 2013-10-25 09:30:46
WHMCS Releases Patch to Address Critical Security Issue Web Hosting News 2013-10-04 16:12:43
Mega Firefox Extension Speeds Up Downloads, Removes File Size Limits Web Hosting News 2014-05-01 08:22:29


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Postbit Selector

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Forum Jump
Login:
Log in with your username and password
Username:
Password:



Forgot Password?
WHT Host Brief Email:

We respect your privacy. We will never sell, rent, or give away your address to any outside party, ever.

Advertisement:
Web Hosting News:
WHT Membership
WHT Membership



 

X

Welcome to WebHostingTalk.com

Create your username to jump into the discussion!

WebHostingTalk.com is the largest, most influentual web hosting community on the Internet. Join us by filling in the form below.


(4 digit year)

Already a member?