[
https://issues.apache.org/jira/browse/OAK-9261?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17226783#comment-17226783
]
Thomas Mueller commented on OAK-9261:
-------------------------------------
> do we promise anything beyond fixing security issues?
Well this issue here is a bit about that... Older Solr versions might have
security issues, and the only way to provide a fix for that is to upgrade Solr.
Or remove Solr from Oak.
> Users who use 1.6 because they are on Java 7 will disagree.
Yes I understand. Of course you are right.
The question is which one of the two is more important: those that have Java 8,
and want to use an old version of Oak in a secure way, or those that use Java 7
and don't care about security... (That's the two options, because you can't use
this version of Oak with Java 7 in a secure way). That's why I think Java 8 is
more important.
> Upgrade Apache Solr to 8.6.3 and remove Embedded Solr Server
> ------------------------------------------------------------
>
> Key: OAK-9261
> URL: https://issues.apache.org/jira/browse/OAK-9261
> Project: Jackrabbit Oak
> Issue Type: Improvement
> Components: query, solr
> Reporter: Thomas Mueller
> Assignee: Thomas Mueller
> Priority: Major
> Fix For: 1.6.21, 1.4.27, 1.8.24, 1.36.0, 1.22.6
>
>
> We are currently using a relatively old version of Apache Solr.
> I will try upgrading to the latest stable version, 8.6.3
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
