With the latest discovery of some remote vulnerabilities in mysql and PHP, I had to upgrade my production server.
And to be clear, I don’t like updates.
Esp. not on mission critical apps. Updates tend to break things, you see:)
But running php 4.3.6 and mysql 4.0.20 was getting,unwise.
Upgrading PHP is easy, with the (imho) great installer of entropy.ch.
installer -verboseR -pkg ~/php-4.3.10.pkg -target /<br />
Don’t forget afterwards to restore your httpd.conf and to edit /usr/local/php/httpd.conf.php to add:
AddType application/x-httpd-php .php<br />
AddType application/x-httpd-php .html<br />
AddType application/x-httpd-php-source .phps<br />
MySQL is somewhat more tricky.
The version supplied by Apple is well,historic.
I like to compile MySQL from source (esp. because that takes 8,5 minute on my Xserve :) and install it to /usr/local/mysql-(version).
After that I create a symlink from /usr/local/mysql-(version) to /usr/local/mysql.
Take some care replacing the apple supplied mysql-binaries with symlinks to the up2date /usr/local/mysql/bin/ counterparts.
After this, upgrading mysql from source is painless.
The most recent upgrade:
gnutar -xzvf mysql-4.1.10a.tar.gz
./configure –with-openssl <br />
–prefix=/usr/local/mysql-4.1.10_a <br />
mysqladmin -u root -p shutdown
cp -R mysql/data mysql-4.1.10_a/data
chown -r mysql:wheel mysql-4.1.10_a/data
ln -s /usr/local/mysql-4.1.10_a /usr/local/mysql
That’s all. If something goes wrong, just restore the symlink to the “old” mysql-(version) and you’re safe.
Be aware of the new password hashing mysql uses from 4.1.1 of. I used the –old-password switch untill I’ve upgraded all my clients.