Subject: Re: PHPv4 EoL
To: Adrian Portelli <firstname.lastname@example.org>
From: Greg Troxel <email@example.com>
Date: 12/06/2007 09:42:30
Adrian Portelli <firstname.lastname@example.org> writes:
> Geert Hendrickx wrote:
>> On Wed, Dec 05, 2007 at 10:24:52AM +0900, OBATA Akio wrote:
>>> Do you plan on removing PHP4 from pkgsrc before 2008Q1 branch or not?
>> We should mark it "eol" in pkg-vulnerabilities first.
> That will be done regardless on 2007-12-31.
> By the looks of it there are only a handful of packages that are marked
> as PHP4 only:
There are also non-pkgsrc programs that use php4. There are two
conditions to remove it from pkgsrc:
packages that depend on it are updated to php5, or removed
the user community would be better served if it were removed than it
stayed, modulo the effort of maintaining it*
* and the effort is pretty low once upstream stops patching, and
especially if we don't add vulnerabilities if it's eol
Removing software because we think people shouldn't use it isn't
reasonable - I'm not saying anyone said this, but it feels premature to
me to remove php4.