#wordpress 2018-02-06

2018-02-06 UTC
tantek and prtksxna joined the channel
# 02:38 
GWG https://searchengineland.com/need-speed-google-dedicates-engineering-team-accelerate-development-wordpress-ecosystem-291214
[eddie] and [miklb] joined the channel
# 03:39 
[miklb] very, very curious that.
# 03:42 
GWG Hello, [miklb]
# 03:42 
[miklb] good evening
# 03:46 
GWG How goes?
# 03:47 
[miklb] good. mostly this old house stuff still.
# 03:48 
[miklb] Saturday had to roll back production and apply a hot fix, but Sunday I was able to get a working system. Still a few bugs to work out 🙂
# 03:51 
GWG Glad to hear.
# 03:51 
GWG I've been working on UI
# 03:52 
[miklb] Trying to catch up on some reading now, took a peak at GitHub activity. Haven’t read through any of the code changes yet.
[eddie], tantek, prtksxna, jeremycherfas, [hans], [colinwalker], [kevinmarks], [miklb], dougbeal|mb1, gRegorLove, GWG and [cleverdevil] joined the channel
# 18:27 
tantek could someone who understands the issues about WP vs PHP 5.2 vs the WP Update server summarize / tl;dr this tweetstorm? https://twitter.com/CiPHPerCoder/status/960772929083662336
# 18:27 
@CiPHPerCoder If you've read this entire thread, thank you for bearing with me. I have a lot of work before me, but I'd like to think that at the very least my effort won't be wasted (as it is with WordPress). (twitter.com/_/status/960772929083662336)
# 18:28 
tantek no sorry that was a subthread (substorm?). I meant this tweetstorm: https://twitter.com/CiPHPerCoder/status/960760569740570624
# 18:28 
@CiPHPerCoder I've drafted several blog posts in the past week and scrapped them all. None of them feel important enough to write about, let alone publish. (twitter.com/_/status/960760569740570624)
# 18:28 
tantek e.g. https://twitter.com/CiPHPerCoder/status/960764204595769344
# 18:28 
@CiPHPerCoder Imagine circa-2012 Anonymous getting their hands on enough 0days (or getting lucky and discovering enough misconfigurations) to get into the update server for WordPress and poisoning the update file with their malware. That's a very basic supply-chain attack. (twitter.com/_/status/960764204595769344)
# 18:29 
aaronpk easier reading: https://threadreaderapp.com/thread/960760569740570624.html
# 18:30 
tantek Oooh more importantly - apparent **manual update** required for all WP 4.9.3 installs (to 4.9.4) heads-up WordPress users/admins! https://make.wordpress.org/core/2018/02/06/wordpress-4-9-4-release-the-technical-details/
# 18:33 
aaronpk ouch
[miklb] joined the channel
# 20:30 
[miklb] yeah, 4.9.2 came out yesterday and broke auto-updates so 4.9.3 was released today and requires manual afaik to get back auto-updates both were maintenance releases
# 20:30 
[miklb] er, 4.9.3 yesterday, 4.9.4 today
[eddie], [tantek], [kevinmarks] and tantek joined the channel