Faizan, +1 for a minimal diff 2.5.3.1 security release. I think an inclination to prioritize getting out the simplest possible release including this critical security fix is sound. Simplest Thing That Could Possibly Work and all that. As you note, there are a number of changes latent in 2-5-patches targetted for a 2.5.4, including a significant JSR-168 support improvement courtesy Cris Holdorph. Getting a 2.5.4 release out sometime is probably therefore also a worthy goal, maybe depending on how steep the upgrade path to 2.6 is felt to be. Andrew Hi! again!! -- Join your friends and colleagues at JA-SIG with Altitude: June 24-27, 2007 in Denver, CO USA. Featuring keynotes by: Phil Windley, Matt Raible, Matt Asay Sessions on topics including: CAS, uPortal, Portlets, Sakai, Identity Management, and Open Source For more information & registration visit: http://www.ja-sig.org/conferences/07summer/index.html --- You are currently subscribed to uportal-dev@lists.ja-sig.org as: [EMAIL PROTECTED] To unsubscribe send a blank email to [EMAIL PROTECTED] |
- Re: [uportal-dev] uPortal Security Notice: Remote... William G. Thompson, Jr.
- Re: [uportal-dev] uPortal Security Notice: R... Faizan Ahmed
- Re: [uportal-dev] uPortal Security Notic... Faizan Ahmed
- [uportal-dev] 2.5.3.1 security relea... Andrew Petro
- Re: [uportal-dev] 2.5.3.1 securi... Cris J Holdorph
- Re: [uportal-dev] 2.5.3.1 securi... Faizan Ahmed
- Re: [uportal-dev] 2.5.3.1 s... Faizan Ahmed
- Re: [uportal-dev] 2.5.3... Mark Boyd
- Re: [uportal-dev] 2.5.3... Faizan Ahmed
- [uportal-dev] How to update the website Andrew Petro
- [uportal-dev] RemoteUserSecurityContext patc... Andrew Petro