Knowledgebase

security of PHP4 VS PHP5

Posted by bambinou, 10-16-2009, 05:33 AM
Hello all, I have an issue with my site, my website interface has now became very complex because I have a full time programmer coding the site for over year non stop. We have many third part softwares running and we have tried to update the version of PHP from 4 to version 5, it was catastrophic, many part of the site where not working,for example the soap module worked differently and other things. I am not a programmer myself, this is why I really need an expert view about this problem, I need to have have my site very secure from all side, I am aware it is not possible to stop hackers,but at least it is possible minimise the risks of getting hacked by less people. My question is: If we keep PHP4 because we cannot move onto PHP5 due to website problems, is it a risk or not? Is the last version of PHP4 be as secure as the last version of PHP5 security wise? My nessus security scan keeps sending me alert about possible security holes in the php4 version, shall I check them as false positive? Many thanks for your help, BamBam
Posted by CretaForce, 10-16-2009, 08:25 AM
PHP 4 is not supported with patches any more. So if an exploit comes out then it's possible your site get hacked.
Posted by bambinou, 10-16-2009, 08:30 AM
Thank you, I have forwarded this message to my programmer. Regards, BamBam
Posted by inspiron, 10-16-2009, 08:38 AM
Programming in the PHP 4 is perfectly safe as long as you know what are you doing.
Posted by bambinou, 10-16-2009, 08:41 AM
Inspiron, What will happen as Creta force said "if a new exploit comes out" no patches will be written, what do you think>? Regards, BamBam
Posted by gigatux, 10-16-2009, 09:22 AM
Someone might put together an unofficial patch to fix the issue, but it'll unlikely be as timely as any security patches found for PHP5. Sticking with PHP4 will probably bite you sometime down the line even if not immediately, e.g. if later versions of any third party software you're using start requiring PHP5 and you need to upgrade the third party software.
Posted by bambinou, 10-16-2009, 09:47 AM
Yes I think you are 100% right on this, thank you! Regards, BamBam
Posted by gigatux, 10-16-2009, 10:20 AM
No problems. There's also quite an interesting movement at http://www.gophp5.org/ trying to get people to commit to using no less than PHP 5.2.
Posted by bambinou, 10-16-2009, 12:42 PM
Thanks COCO!


Was this answer helpful?

Add to Favourites Add to Favourites

Print this Article Print this Article
Also Read
AngelNetworkz.net DC = DOWN (Views: 683)
FFMPEG and rmvb? (Views: 626)
Free Good Webstats? (Views: 590)
Webkore down for hours now. (Views: 609)
help: spam mail from server with unknown person (Views: 607)


Language:

Client Menu

 

Client Login

Email

Password

Remember Me

Search



  
 

Clients

Hosting

VPS Hosting

About Us

Contact Us

Copyright © 2015 DC International LLC in partnership with Bragin IT Solutions Inc. - All Rights Reserved.