Need package for php5 without suhosin patch
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
php5 (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
Binary package hint: php5
First, I know bugs related to suhosin have been discussed before and understand that you can choose to use the module or not by installing php5-suhosin. However, there is currently no way to disable the core suhosin patch except to build your own PHP5 packages.
The Suhosin patch itself adds significant memory and cpu overhead to PHP and there should be a way to disable it without having to go through the headache of maintaining our own modules.
In our case we are serving the page http://
Since our code is well audited and secure, and since the memory canaries it provides only help detect memory corruption bugs in PHP itself and do not prevent them we see no reason we would ever wish to run with it enabled on our production servers.
Please provide packages for Ubuntu that don't force the inclusion of Suhosin!
Changed in php5 (Ubuntu): | |
importance: | Undecided → Wishlist |
Changed in php5 (Ubuntu): | |
status: | New → Confirmed |
A bit late to the party here, but have you tried disabling various suhosin features in php.ini? There's a fairly comprehensive list at:
http:// www.hardened- php.net/ suhosin/ configuration. html
Turning off things like transparent session encryption could see a pretty drastic performance boost on sites that use automatic session tracking.