Categories
MySQL

MySQL 5.0.84 for Debian 4.0 “Etch”, remote DoS under review

Some days after MySQL 5.0.83 has been released, MySQL 5.0.84 is now available on Dotdeb for Etch amd64/i386.

Please note that an advisory about a remote DoS for MySQL <5.0.84 is under review : CVE-2009-2446. Therefore, upgrading to this new version is strongly recommanded.

As usual, please read the list of changes before upgrading.

Categories
MySQL

MySQL 5.1.36 is available for Debian “Etch” and “Lenny”

MySQL 5.1.36 is now available on Dotdeb for Debian 4.0 “Etch” / Debian 5.0 “Lenny” in amd64/i386 flavours.

It fixes a lot of annoying bugs (read the list of changes to be convicted), especially one about granting the right privileges during the Debian post-installation process. The mysql-server-5.1 package should now install without needing any ugly trick.

Please upgrade your servers.

Categories
MySQL

MySQL 5.0.83 for Debian 4.0 “Etch”

MySQL 5.0.83 is now available on Dotdeb for Etch amd64/i386.

Please read the list of changes of this maintenance release before upgrading.

Categories
PHP

PHP 5.3.0-final preview packages available for Debian Lenny

The official announce of PHP 5.3.0

Read carefully this announce from PHP.net and its links :

The PHP development team is proud to announce the immediate release of PHP 5.3.0. This release is a major improvement in the 5.X series, which includes a large number of new features and bug fixes.

Some of the key new features include: namespaceslate static bindingclosures, optional garbage collection for cyclic references, new extensions (like ext/phar,ext/intl and ext/fileinfo), over 140 bug fixes and much more.

For users upgrading from PHP 5.2 there is a migration guide available here, detailing the changes between those releases and PHP 5.3.0.

Further details about the PHP 5.3.0 release can be found in the release announcement, and the full list of changes are available in the ChangeLog.

This is a great news and a big step for PHP, that gets cleaner and speedier (for example, read this benchmark of ezPublish performance boost with PHP 5.3.0).

In my (sysadmin) opinion, the best features are :

  • ext/phar to bundle complete application in an archive
  • MySQL native driver that avoid the libmysqlclient dependency, increases the overall performances and adds great features (real persistance, asynchronous queries)
  • dirty and unsafe features (register_globals, safe_mode, magic_quotes*) removal

The elePHPants march
The elePHPants march (credit : DragonBe)

Be careful!

Depending of your applications, PHP 5.3 may not be fully compatible with 5.2 out of the box :

  • many and many fonctions and features are deprecated or changed
  • some extensions (ming, ncurses…) moved to PECL, others (mime_magic, mhash) are just emulated
  • some bugs still exists and should be fixed with PHP 5.3.1

For example, I experienced some strange behaviour with WordPress, Sweetcron or Roundcube and I had to patch them.

Please read the migration guide very carefully before going further!

What are the changes from Dotdeb?

Ok, now that you read the Changelog and the migration guide, now that you know how to modify your script to migrate to PHP 5.3, you have to be aware of some changes introduced by Dotdeb and their consequences :

  • The migration from libmysqlclient to MySQL native driver is great in terms of performance and memory but have one restriction : it necessitates the use of MySQL 4.1’s newer 41-byte password format. Continued use of the old 16-byte passwords will cause mysql_connect() and similar functions to emit the error, “mysqlnd cannot connect to MySQL 4.1+ using old authentication.”. Please check your MySQL passwords in mysql.user before upgrading!
  • The mail_extra_headers that allowed to insert the script’s name in the sent mails has been included in the core of PHP and the ini variable is now mail.x_header
  • php5-mhash, since its functions are emulated by ext/hash , disappeared and is now included in the core of PHP.
  • php5-ming moved to PECL and is not packaged anymore
  • The Suhosin patch and the associated extension are not available yet (that’s what justifies the preview status)
  • All the PECL extension are not built yet. They will be as soon as the preview phase is over.
  • Enchant support has been included as bonus feature 🙂

How to install?

As they’re just preview packages, the PHP 5.3.0-final ones are still on a separate repository. To install them, just add these temporary entries in your /etc/apt/sources.list.

deb http://php53.dotdeb.org stable all
deb-src http://php53.dotdeb.org stable all

Now launch your favorite commands (apt-get update && apt-get upgrade) to upgrade your box and enjoy!

For your information, I do NOT intend to publish PHP>=5.3.0 packages for Debian Etch, it would mean too much work to get clean packages… PHP 5.2.10 (once fixed) will be last version available for Etch from Dotdeb. Then, you’re strongly encouraged to migrate to Debian Lenny if you want to take profit from 5.3.0.

Last but not least : thank you!

Thanks for using Dotdeb, for your useful reports and for your suggestions. Altough I’m doing my best to bring you the best new features of PHP the stable way, my work is not perfect and your help is really appreciated when things go bad.

Categories
PHP

PHP 5.2.10 packages for Lenny/Etch are now available!

A few days ago, the PHP development team announced the availability of PHP 5.2.10 with many improvements and 100+ bug fixes. Here is the Changelog.

Now that the corresponding Suhosin patch is alive, the PHP 5.2.10 packages are available on Dotdeb :

  • for Debian Lenny and Etch
  • for the amd64 and i386 architectures

Upgrading your servers is highly recommanded.

Update : The PHP 5.2.10 packages seem to be buggy under (un)certain conditions : (f)CGI + Suhosin.
Then I decided to rollback to 5.2.9 to avoid a flood a users’ requests and to give me time to investigate. If your PHP 5.2.10 does not encounter problems, keep it, you’re lucky :)

Categories
PHP

PHP 5.3.0 RC4 available

From PHP.net :

The PHP development team is proud to announce the fourth release candidate of PHP 5.3.0 (PHP 5.3.0RC4). This RC focuses on bug fixes and stability improvements, and we hope only minimal changes are required for the next candidate or final stable releases. PHP 5.3.0 is a newly developed version of PHP featuring long-awaited features like namespaceslate static bindingclosures and much more.

Please download and test these release candidates, and report any issues found. A stable release is expected next week . In case of critical issues we will continue producing weekly RCs. Downloads and further information is available at qa.php.net. See also the work in progress 5.3 upgrade guide.

The preview packages for Debian GNU/Linux 5.0 “Lenny” on amd64 and i386 has been updated. Just apt-get upgrade.

Categories
MySQL

Google Perftools 1.3 available for Lenny

Do you remember how to speed up your MySQL server using the Google Perftools? It seems that the amd64 flavour of these libraries makes MySQL crash.

I just bumped the version of the google-perftools packages for Lenny from 1.0 to 1.3. According to the Changelog they’re bringing a lot of bugfixes and improvements, and then enhance the stability of the daemons they’re plugged in.

Upgrading is highly recommended.

Update : The packages are now available for Etch.

Update #2 : Please desactivate the Google Perftools 1.3! They’re crashing MySQL. I’m rolling back to the old version (Etch : 0.98, Lenny : 1.0) until I fix (or Google) fix this issue. Really sorry for the mess…

Categories
PHP

PHP 5.3.0 RC3 packages for Lenny

The third (and probably the last) release candidate of PHP 5.3.0 has been published by the PHP Group a few days ago. Then I updated the preview packages for Debian GNU/Linux 5.0 “Lenny” on amd64 and i386.

To fetch them, just add these temporary entries in your /etc/apt/sources.list and upgrade your boxes :

deb http://php53.dotdeb.org stable all
deb-src http://php53.dotdeb.org stable all

Please note that an upgrade guide is being written. You also may want to visit this page.

Categories
PHP

PHP 5.3.0 RC2 packages for Lenny

A few days ago, the second release candidate of PHP 5.3.0 has been published by the PHP Group.

I just updated the preview packages for Debian GNU/Linux 5.0 “Lenny” on amd64 and i386. Have fun!

Categories
MySQL

MySQL 5.0.81 is now available (for Etch only)

On May 1st, MySQL 5.0.81 has been published with a lot of bugfixes.

If you’re still using Etch, the corresponding packages are now available for i386 and amd64.