DO NOT REPLY [Bug 41664] - ClassLoader does not return directory resources correctly

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

svn commit: r509880 - in /tomcat/tc6.0.x/trunk/java/org/apache/tomcat/util/net: NioBlockingSelector.java NioEndpoint.java

Author: fhanik Date: Tue Feb 20 19:47:05 2007 New Revision: 509880 URL: http://svn.apache.org/viewvc?view=rev&rev=509880 Log: added in notes to myself about blocking the poller thread, that should be prohibited Modified: tomcat/tc6.0.x/trunk/java/org/apache/tomcat/util/net/NioBlockingSelect

DO NOT REPLY [Bug 41664] - ClassLoader does not return directory resources correctly

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

Re: Proposed new security pages

Hi, On 2/20/07, Filip Hanik - Dev Lists <[EMAIL PROTECTED]> wrote: and with all this crap said, I'm ok either way. Not trying to convince anyone, I just thought that we should provide our users with the same "delay"-courtesy that we would expect a reporting body to provide for us I didn't pick

Re: Proposed new security pages

Filip Hanik - Dev Lists wrote: Yoav Shapira wrote: Hi, On 2/20/07, Filip Hanik - Dev Lists <[EMAIL PROTECTED]> wrote: The consequence of this is that you are "advertising" a security vulnerability to the world, and you are leaving your users with either continue running a stable version that e

Re: Proposed new security pages

Hi, On 2/20/07, Filip Hanik - Dev Lists <[EMAIL PROTECTED]> wrote: yes, I can see a few folks doing this. But I believe most folks still get the updated binaries from their distribution source. for example, RedHat will apply the actual patch and rebuild for their distro, others will do the same.

Re: Proposed new security pages

Yoav Shapira wrote: Hi, On 2/20/07, Filip Hanik - Dev Lists <[EMAIL PROTECTED]> wrote: The consequence of this is that you are "advertising" a security vulnerability to the world, and you are leaving your users with either continue running a stable version that everyone knows how to exploit or

Re: Proposed new security pages

Hi, On 2/20/07, Filip Hanik - Dev Lists <[EMAIL PROTECTED]> wrote: The consequence of this is that you are "advertising" a security vulnerability to the world, and you are leaving your users with either continue running a stable version that everyone knows how to exploit or to upgrade to a non s

Re: Proposed new security pages

Yoav Shapira wrote: Hi, On 2/20/07, Filip Hanik - Dev Lists <[EMAIL PROTECTED]> wrote: sounds good, as long as we don't publish vulnerabilities until they are indeed fix and the release has been voted stable Agreed except the "stable" part. When the vulnerabilities have been fixed in any rel

DO NOT REPLY [Bug 41664] - ClassLoader does not return directory resources correctly

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 41661] - JspConfig.init() is not synchronized

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

svn commit: r509820 - in /tomcat/tc6.0.x/trunk: java/org/apache/tomcat/util/net/ webapps/docs/ webapps/docs/config/

Author: fhanik Date: Tue Feb 20 15:59:05 2007 New Revision: 509820 URL: http://svn.apache.org/viewvc?view=rev&rev=509820 Log: Fix (may not be complete yet) to the memory leak in the NIO connector. The caches where holding references they aren't supposed to hold. Added in the ability to use the pol

DO NOT REPLY [Bug 41664] - ClassLoader does not return directory resources correctly

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 41664] New: - ClassLoader does not return directory resources correctly

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

Re: [VOTE] Release build 6.0.10

Remy Maucherat wrote: Filip Hanik - Dev Lists wrote: Remy Maucherat wrote: Candidate binaries are available here: http://people.apache.org/~remm/tomcat-6/v6.0.10/ According to the (slightly) updated release process, the 6.0.10 tag is: [ ] Broken [ ] Alpha [X] Beta [ ] Stable Sorry guys and g

Re: [VOTE] Release build 6.0.10

Hi, On 2/20/07, Remy Maucherat <[EMAIL PROTECTED]> wrote: > Sorry guys and girls, I messed up and have a memory leak in the NIO > connector. > Fixing it right now. I respect your vote. However, it's not going to change my opinion on this build, since it's obvious some issue is going to be found

Re: Proposed new security pages

Hi, On 2/20/07, Filip Hanik - Dev Lists <[EMAIL PROTECTED]> wrote: sounds good, as long as we don't publish vulnerabilities until they are indeed fix and the release has been voted stable Agreed except the "stable" part. When the vulnerabilities have been fixed in any release, including alpha

Re: Proposed new security pages

sounds good, as long as we don't publish vulnerabilities until they are indeed fix and the release has been voted stable Filip Mark Thomas wrote: All, I have started to put together some additional security pages based on httpd. I have only added text for a couple vulnerabilities but the plan

Re: [VOTE] Release build 6.0.10

Filip Hanik - Dev Lists wrote: Remy Maucherat wrote: Candidate binaries are available here: http://people.apache.org/~remm/tomcat-6/v6.0.10/ According to the (slightly) updated release process, the 6.0.10 tag is: [ ] Broken [ ] Alpha [X] Beta [ ] Stable Sorry guys and girls, I messed up and h

Re: [VOTE] Release build 6.0.10

Remy Maucherat wrote: Candidate binaries are available here: http://people.apache.org/~remm/tomcat-6/v6.0.10/ According to the (slightly) updated release process, the 6.0.10 tag is: [ ] Broken [ ] Alpha [X] Beta [ ] Stable Sorry guys and girls, I messed up and have a memory leak in the NIO co

DO NOT REPLY [Bug 41661] - JspConfig.init() is not synchronized

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 41661] - JspConfig.init() is not synchronized

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 41661] New: - JspConfig.init() is not synchronized

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

Re: svn commit: r509173 - in /tomcat/connectors/trunk/jk: native/apache-1.3/mod_jk.c native/apache-2.0/mod_jk.c xdocs/miscellaneous/changelog.xml xdocs/reference/apache.xml xdocs/webserver_howto/apac

Please read my reply describing the detailed consequences of this change. The behaviour only changes n a corner case, which only exists since our latest version 1.2.20, wihch is not very old. everything that was possible with JkEnvVar before 1.2.20 neither changed in 1.2.20 not due to this patch.

Re: svn commit: r509173 - in /tomcat/connectors/trunk/jk: native/apache-1.3/mod_jk.c native/apache-2.0/mod_jk.c xdocs/miscellaneous/changelog.xml xdocs/reference/apache.xml xdocs/webserver_howto/apach

On Feb 19, 2007, at 9:44 AM, Mladen Turk wrote: [EMAIL PROTECTED] wrote: /* env_name is mandatory, default_value is optional. - * No value means set the variable to an empty string. + * No value means send the attribute only, if the env var is set during runtime. */ Th

Re: [VOTE] Release build 6.0.10

Remy Maucherat wrote: Candidate binaries are available here: http://people.apache.org/~remm/tomcat-6/v6.0.10/ According to the (slightly) updated release process, the 6.0.10 tag is: [ ] Broken [ ] Alpha [ ] Beta [ ] Stable Only three votes so far. Any additional votes after testing it ? Rémy

DO NOT REPLY [Bug 41658] - jpeg image can not show up

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu