[ https://issues.apache.org/jira/browse/GERONIMO-4685?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12720665#action_12720665 ]
Donald Woods commented on GERONIMO-4685: ---------------------------------------- We also need to upgrade to Tomcat 6.0.20, which includes 5 new security fixes. > Build our own tomcat. > --------------------- > > Key: GERONIMO-4685 > URL: https://issues.apache.org/jira/browse/GERONIMO-4685 > Project: Geronimo > Issue Type: Bug > Security Level: public(Regular issues) > Components: buildsystem, Tomcat > Affects Versions: 2.2 > Reporter: David Jencks > Assignee: David Jencks > Fix For: 2.2 > > > We don't have the patches used to build the tomcat version we distribute, at > least I can't interpret diffs of diffs. > Build an archetype that sets up a maven multimodule project to build tomcat. > Use a bash script to svn copy tomcat source into this structure > commit > apply patches > commit > build under our own groupId. > Work started in sandbox djencks/tomcat-archetype. > Note that tomcat jars distributed by tomcat have circular dependencies. So, > combine catalina and coyote jars. Split out util for now. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.