A few days ago, someone asked me for advice about a slow website.
Upon analysis, the server wasn't the issue—it was running #Linux #CentOS7 on bare metal. However, the site was operating on PHP 5.4 (default for CentOS 7) and was entirely custom-made.
I suggested updating everything, especially since CentOS 7 is nearing its EOL, and transitioning the web application to work on PHP 8.
Their response? "We don't want to do it." They wanted me to set up a new, optimized server to run PHP 5.4. I explained the risks and the nonsensical nature of this, only to hear that they found someone willing to install PHP 5.4 on a new system. So, if I refused, they'd give the job to someone else.
I replied, "Good luck," and ended the conversation.
It saddens me that some in the IT world would opt for such shortcuts rather than striving for a more secure web.
#WebSecurity #TechEthics #ServerManagement #SysAdmin #PHP
Stefano Marinelli /
npub14c…j0nj8
2023-09-09 10:06:17
Author Public Key
npub14calwd6xg349ahf3nnhhyqem2w2e3gs66p7zctz2sna74u3tsddq7j0nj8Published at
2023-09-09 10:06:17Event JSON
{
"id": "e88ab77f49043a9703865c6b35bc542fd6bbfb66906963a59beb00724eaf3133",
"pubkey": "ae3bf73746446a5edd319cef72033b539598a21ad07c2c2c4a84fbeaf22b835a",
"created_at": 1694253977,
"kind": 1,
"tags": [
[
"t",
"linux"
],
[
"t",
"centos7"
],
[
"t",
"websecurity"
],
[
"t",
"techethics"
],
[
"t",
"servermanagement"
],
[
"t",
"sysadmin"
],
[
"t",
"php"
],
[
"proxy",
"https://mastodon.bsd.cafe/users/stefano/statuses/111034628668949303",
"activitypub"
]
],
"content": "A few days ago, someone asked me for advice about a slow website. \nUpon analysis, the server wasn't the issue—it was running #Linux #CentOS7 on bare metal. However, the site was operating on PHP 5.4 (default for CentOS 7) and was entirely custom-made. \nI suggested updating everything, especially since CentOS 7 is nearing its EOL, and transitioning the web application to work on PHP 8. \nTheir response? \"We don't want to do it.\" They wanted me to set up a new, optimized server to run PHP 5.4. I explained the risks and the nonsensical nature of this, only to hear that they found someone willing to install PHP 5.4 on a new system. So, if I refused, they'd give the job to someone else. \nI replied, \"Good luck,\" and ended the conversation. \n\nIt saddens me that some in the IT world would opt for such shortcuts rather than striving for a more secure web. \n\n#WebSecurity #TechEthics #ServerManagement #SysAdmin #PHP",
"sig": "c84c3371940b54c7ca3fce2987f9bbe3aa965f497e8bb165677246cc195fcace1ba11e4b8522d539c6be4a74c6ae37746cb6e8fba4152263f334ab8e9c66ea87"
}