tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Glenn Nielsen <gl...@voyager.apg.more.net>
Subject Re: [SECURITY] Security Vulnerabilities in Tomcat 3.1 and 3.2
Date Wed, 13 Dec 2000 02:30:35 GMT
"Craig R. McClanahan" wrote:
> 
> Glenn Nielsen wrote:
> 
> > Very shortly I will have some updated documents for configuring Tomcat to use
> > the Java SecurityManager under various flavors of MS Windows.  I would like
> > to get this into the 3.2.1 release.
> >
> > +1 If you can hold off a day so I can get these documents updated
> >
> 
> I would be really uncomfortable holding off security related fixes for "feature"
> improvements (or even bug fixes), when we can roll a 3.2.2 release as soon as the
> changes are committed and tested.  Keep in mind that we're bypassing the usual "beta
> test" period if we release 3.2.1 ASAP, so adding lots of things creates some measure
> of risk.
> 

Thats fine, it can wait.

+1 on ASAP release of 3.2.1

Glenn

----------------------------------------------------------------------
Glenn Nielsen             glenn@more.net | /* Spelin donut madder    |
MOREnet System Programming               |  * if iz ina coment.      |
Missouri Research and Education Network  |  */                       |
----------------------------------------------------------------------

Mime
View raw message