Suhosin 0.9.35

scrupul0us

Verified User
Joined
Jan 8, 2011
Messages
135
Location
New York
0.9.35 is now officially out:

SOURCE: http://download.suhosin.org/suhosin-0.9.35.tgz
DEVELOPER AT GITHUB: https://github.com/stefanesser/suhos...ive/master.zip

2014-02-24 - 0.9.35

- From now only PHP >= 5.4 is officially supported
- Fix problems with the hard memory_limit on 64 bit systems
- Fix problems with user space session handler due to change in PHP 5.4.0
- Add changes in PHP 5.5 session handlers structures for PHP 5.5 compability
- Fix std post handler for PHP >= 5.3.11
- Fix suhosin logo in phpinfo() for PHP 5.5
- Change fileupload handling for PHP >= 5.4.0 to use an up to date RFC1867 replacement code
- Adapted suhosin to PHP 5.5 executor
- Added some test cases for various things
- Added suhosin.log.stdout to log to stdout (for debugging purposes only)
- Add ini_set() fail mode to suhosin.disable.display_errors
- Fix suhosin.get/post/cookie.max_totalname_length filter
- Refactor array index handling in filter to make it work always
- Added support for PHP 5.6.0alpha2
- WARNING: FUNCTION WHITELISTS/BLACKLISTS NEVER WORKED CORRECTLY WITH PHP < 5.5
 
Last edited:
I haven't tested what processing penalty there is.

Has anyone rolled it out yet, I haven't yet had a chance.
 
mod_security slows things down because of all the parsing it needs to do. You lose a few milliseconds.

OK just so I understand, SuHosin isn't having an issue with Mod_security (that's how I read it) but rather you are referencing the penalty ModSec imparts due to all the processing.
 
Hello
I get this error
configure: error: Cannot find php-config. Please use --with-php-config=PATH
make: *** No targets specified and no makefile found. Stop.
make: *** No rule to make target `install'. Stop.
 
Hello
I get this error
configure: error: Cannot find php-config. Please use --with-php-config=PATH
make: *** No targets specified and no makefile found. Stop.
make: *** No rule to make target `install'. Stop.

You'll want to use :

Code:
./configure --with-php-config=/usr/local/php5/bin/php-config && make && make install

Presuming that "/usr/local/php5/bin/php-config" is where your "helper" binaries are installed.

In case you need it, you might also need to call the full path to:

Code:
/usr/local/php5/bin/phpize
 
Just as an aside, we've had no issues running 9.35 and haven't had any support tickets related to it.
 
Nice to know :)

Does the CB will add the needed line at the end of options.conf or should i add it manually?

Will CB manage the php.ini line aswell?

Thanks for all your work
 
Nice to know :)

Does the CB will add the needed line at the end of options.conf or should i add it manually?

Will CB manage the php.ini line aswell?

Thanks for all your work

Yes, it will add it automatically to the options.conf. suhosin.so is loaded in php.conf.d/directadmin.ini with default options (PHP extensions file used by CB 2.0). You can also set suhosin to scan PHP uploads using ClamAV. That could be also set in the options.conf.
 
Thanks, i'm trying it and now APC.so isnt found anymore (actually not sure it was working before but as far as i remember it was). Btw, will you also add APC to CB? (pretty easy to install).

Code:
wget  -O APC.tgz http://pecl.php.net/get/APC
tar xvzf APC.tgz >/dev/null 2>&1
cd APC-*
/usr/local/bin/phpize >/dev/null 2>&1
./configure --with-php-config=/usr/local/bin/php-config
make
make install

Regards ;)
 
Back
Top