Hi Arvids,
On Mon, Feb 3, 2014 at 7:41 AM, Arvids Godjuks <[email protected]>wrote:
> My personal view is that we need to start to beef up the default PHP
> security, and a lot. Kind'a what has been done with the password API, also
> needs to be done with a lot of stuff to make it's usage much easier and
> much more secure by default.
>
> And although I get the general feeling that PHP 5.6 has low probability of
> getting such changes as this, PHP 6 by all indications is around the corner
> and stuff like this has to go into it.
>
I would like to do it for escape functions and more sophisticated input
validater,
but it wouldn't happen in 5.6 as you expect.
For the time being, I would like to make features a little stronger,
provide better function for misused function and/or document them more
explicitly.
Regards,
--
Yasuo Ohgaki
[email protected]