tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Dan K." <>
Subject RE: Tomcat4 denial of service in debian...
Date Thu, 16 Oct 2003 19:40:35 GMT


So then if there is a DoS vulnerability in the "normal jakarata tomcat
4.0.x distributions", would the developers consider that important enough
to be looked at/fixed?  I'm just trying to figure out whether the
vulnerability in the debian tomcat would affect the normal jakarta tomcat
versions >= 4.0.4 (i'm using the normal jakarta distributed tomcat 4.0.6).
Upgrading to the 4.1 branch would require more work for us. :(


On Thu, 16 Oct 2003, Shapira, Yoav wrote:

> Howdy,
> >However, I'd still like to be certain that 4.0.6 is ok... Perhaps I
> should
> >post to the developer's list..?
> That won't get you any further.  Contrary to what one might think, most
> if not all tomcat developers lurk on this list.  AFAIK no one uses
> Debian, and at this point unless there's a showstopper we don't care
> that much about the 4.0.x branch.
> Yoav Shapira
> This e-mail, including any attachments, is a confidential business communication, and
may contain information that is confidential, proprietary and/or privileged.  This e-mail
is intended only for the individual(s) to whom it is addressed, and may not be saved, copied,
printed, disclosed or used by anyone else.  If you are not the(an) intended recipient, please
immediately delete this e-mail from your computer system and notify the sender.  Thank you.
> ---------------------------------------------------------------------
> To unsubscribe, e-mail:
> For additional commands, e-mail:

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message