On Thu, Feb 14, 2019 at 2:36 PM Mark Thomas wrote:
> On 14/02/2019 19:52, William A Rowe Jr wrote:
> > On Mon, Jan 28, 2019 at 9:22 AM Stefan Eissing <
> stefan.eiss...@greenbytes.de>
> > wrote:
>
>
>
> >> The HTTP WS organisers expressed the wish
On Mon, Jan 28, 2019 at 9:22 AM Stefan Eissing
wrote:
> The HTTP Workshop is returning 2019 on April 2-4 in Amsterdam (
> https://github.com/httpworkshop/workshop2019). While I attended the last
> three shops(?), I think it would be a good opportunity for someone else
> from the team to go there
Folks,
it is abusive to force all builds of mod_jk to invoke the whole
automake toolchain; it isn't practical to expect automake to work
on all platforms which mod_jk is happy to compile under. Even the
root of automake, m4 itself, is often flakey under some of these
OS distributions. Automake
On 1/13/2012 8:30 PM, Brian Burch wrote:
On 14/01/12 09:45, Filip Hanik - Dev Lists wrote:
No grudge held :)
I'm just bringing it up since very many files have been reformatted for
the sake of formatting. And when tracing down a problem, I, and I
suspect others too, often use SVN history to
On 10/31/2011 2:37 AM, mt...@apache.org wrote:
--- tomcat/jk/trunk/native/iis/pcre/pcre.amd64 (original)
+++ tomcat/jk/trunk/native/iis/pcre/pcre.amd64 Mon Oct 31 07:37:07 2011
@@ -66,7 +66,7 @@ LIB32_OBJS= \
$(LIB32_FLAGS) $(DEF_FLAGS) $(LIB32_OBJS)
-CPP_PROJ=-nologo -MD -W3 -O2
On 10/27/2011 1:10 PM, Mladen Truk wrote:
On 10/27/2011 07:45 PM, Rainer Jung wrote:
BTW, I plan to support IIS on XP+ which means
dropping anything bellow IIS5.1
I'm OK with dropping support for IIS up until 5.0, e.g. up until Win
2000 including if that's what you plan. Starting support
On 10/27/2011 1:10 PM, Mladen Truk wrote:
On 10/27/2011 07:45 PM, Rainer Jung wrote:
BTW, I plan to support IIS on XP+ which means
dropping anything bellow IIS5.1
I'm OK with dropping support for IIS up until 5.0, e.g. up until Win
2000 including if that's what you plan. Starting support
On 10/28/2011 2:28 AM, Mark Thomas wrote:
On 28/10/2011 08:15, William A. Rowe Jr. wrote:
On 10/27/2011 1:10 PM, Mladen Truk wrote:
On 10/27/2011 07:45 PM, Rainer Jung wrote:
BTW, I plan to support IIS on XP+ which means
dropping anything bellow IIS5.1
I'm OK with dropping support for IIS
On 7/27/2011 1:16 PM, jean-frederic clere wrote:
Well does it make sense to vote for a binary?
IMHO, not as a 'release vote'. Testing it, is great, but testing
isn't the purpose of release voting. Mladen attests he's compiled
from the asf source, then the binary corresponds to the ASF
On 5/18/2011 9:22 AM, Mark Thomas wrote:
On 18/05/2011 15:06, Konstantin Kolinko wrote:
2011/5/18 Mark Thomas ma...@apache.org:
All,
We have the option to move to svnpubsub for managing our releases.
Rather than copying artefacts to people.a.o and then waiting for rsync
(every around 2
On 4/27/2011 1:53 AM, Henri Gomez wrote:
Now that HTTP connector is as fast as AJP connector, is it still required ?
Ie, is there any mod_proxy for IIS ?
You mean...
http://blogs.msdn.com/b/carlosag/archive/2010/04/02/setting-up-a-reverse-proxy-using-iis-url-rewrite-and-arr.aspx
?
On 2/17/2011 4:41 AM, Mark Thomas wrote:
I'm not particularly comfortable with this. I'm having a hard time
coming up with a use case where some requests are swallowed and some are
not. I think I'd prefer a per Connector or per Context attribute. I need
to read the right part of the HTTP
On 2/10/2011 7:04 AM, Rainer Jung wrote:
Servlet 3 standardizes file uploads. It contains the ability to limit on
request size,
pretty much the same as commons fileupload supported for many years.
It seems when this conditions triggers the rest of the request inout stream
is still
On 1/29/2011 1:07 PM, Henri Gomez wrote:
I'd certainly like to see some more information on this usage. With more
info we can figure out what solution makes the most sense. Anything we
can do to make Beanstalk easier to use is good although I would prefer
to keep it generic if we can. Amazon -
On 1/30/2011 8:20 AM, Christopher Schultz wrote:
Chris,
On 1/27/2011 3:54 PM, Chris Beckey wrote:
Chris,
To set some context, I posted on the tomcat users list serve a question
about running OpenSSL in FIPS mode under Tomcat.
The last communication was that you may investigate an
On 11/1/2010 5:58 AM, Mark Thomas wrote:
On 01/11/2010 06:43, Konstantin Kolinko wrote:
2010/11/1 Mark Thomas ma...@apache.org:
On 31/10/2010 13:13, kkoli...@apache.org wrote:
Modified: tomcat/tc6.0.x/trunk/STATUS.txt
--- tomcat/tc6.0.x/trunk/STATUS.txt (original)
+++
On 10/27/2010 3:10 AM, Tim Whittington wrote:
On Tue, Oct 26, 2010 at 11:42 PM, Mladen Turk mt...@apache.org wrote:
On 10/26/2010 11:28 AM, Mark Thomas wrote:
Hi,
I don't have the hardware to test if this is an issue on ia64 this but
the following files have the same MD5 hash:
On 9/24/2010 4:55 PM, Caldarale, Charles R wrote:
From: Wesley Acheson [mailto:wesley.ache...@gmail.com]
Subject: Re: DO NOT REPLY [Bug 4] New: More bugs
Pardon my language but WTF?
I think Mr Rowe is actually issuing a compliment to the sterling efforts of
Mark T, albeit in a
On 9/14/2010 5:48 PM, Rainer Jung wrote:
On 14.09.2010 01:14, William A. Rowe Jr. wrote:
On 9/13/2010 6:11 PM, Tim Whittington wrote:
I agree with this approach.
I'd like to get a 1.2.31 release out sometime to release the ISAPI
Redirector log rotation though, before we start on 1.3.
Just
On 9/11/2010 5:03 PM, Tim Whittington wrote:
+1 from me.
I've been maintaining my own VS 2003 (and now 2005) solution for a while now
with Apache 2.0/2.2 projects.
Once this is committed, you should be able to load the .dsp into vs.net thru
vs 2010 and convert with minimal issues.
On 9/8/2010 12:57 PM, Rainer Jung wrote:
+1 to everything you suggested to change. If you improve the dsps, you might
want to take
a look at
https://issues.apache.org/bugzilla/show_bug.cgi?id=43303
Just worked though jk.rc and it was fairly straight forward, just
adding a JK_DLL_SUFFIX
On 9/13/2010 4:15 PM, William A. Rowe Jr. wrote:
On 3/1/2010 4:45 AM, Mladen Turk wrote:
The Apache Tomcat team announces the immediate availability of
Apache Tomcat Connectors 1.2.30 stable.
With this release, following the retirement of httpd-1.3 from all maintenance,
would this be a good
On 9/14/2010 6:00 AM, wr...@apache.org wrote:
Author: wrowe
Date: Tue Sep 14 11:00:40 2010
New Revision: 996836
URL: http://svn.apache.org/viewvc?rev=996836view=rev
Log:
Identify JK_ISAPI for jk_version.h PACKAGE definition
Modified:
tomcat/jk/trunk/native/iis/Makefile.amd64
On 9/14/2010 10:10 AM, Mladen Turk wrote:
A little bit messy for RM to rename the files once when created,
but allows to limit the number of directories.
Certainly easier than trying to wring out the version-decorated file names
straight from the build system :)
I'll take a look at other
On 3/1/2010 4:45 AM, Mladen Turk wrote:
The Apache Tomcat team announces the immediate availability of
Apache Tomcat Connectors 1.2.30 stable.
With this release, following the retirement of httpd-1.3 from all maintenance,
would this be a good time to declare this the final native/apache-1.3/
On 9/13/2010 4:15 PM, William A. Rowe Jr. wrote:
On 3/1/2010 4:45 AM, Mladen Turk wrote:
The Apache Tomcat team announces the immediate availability of
Apache Tomcat Connectors 1.2.30 stable.
With this release, following the retirement of httpd-1.3 from all maintenance,
would this be a good
On 9/13/2010 4:38 PM, Rainer Jung wrote:
I don't have any problem of freezing the 1.3 support concerning features and
minor bugs,
but I find it a bit surprising for users to suddenly stop supporting 1.3. In
my opinion we
should still do security fixes when needed and critical bugs. Most
On 9/13/2010 6:11 PM, Tim Whittington wrote:
I agree with this approach.
I'd like to get a 1.2.31 release out sometime to release the ISAPI
Redirector log rotation though, before we start on 1.3.
Just to make sure there is no confusion, I'm speaking of dropping apache-1.3,
prior to 1.2.31,
On 9/11/2010 12:23 AM, Mladen Turk wrote:
On 09/10/2010 08:06 PM, William A. Rowe Jr. wrote:
On 9/10/2010 12:48 PM, mt...@apache.org wrote:
Author: mturk
Date: Fri Sep 10 17:48:15 2010
New Revision: 995901
URL: http://svn.apache.org/viewvc?rev=995901view=rev
Log:
Oops. We should really do
On 9/10/2010 12:48 PM, mt...@apache.org wrote:
Author: mturk
Date: Fri Sep 10 17:48:15 2010
New Revision: 995901
URL: http://svn.apache.org/viewvc?rev=995901view=rev
Log:
Oops. We should really do something with that portable.h
svn rm it. The make files need simple cat portable.h.in
It seems I've been lax in committing anything in recent memory, and had my
commit privileges for the jk module suspended :) But wanted to pass on these
very small proposals;
* mod_jk.dsp should have referred to a project 'named' mod_jk, the 'project
name' should generally match the name of
On 9/8/2010 12:04 PM, Mladen Turk wrote:
On 09/08/2010 06:51 PM, William A. Rowe Jr. wrote:
It seems I've been lax in committing anything in recent memory, and had my
commit privileges for the jk module suspended :) But wanted to pass on these
very small proposals;
Sure. Note that I'm
On 9/8/2010 12:57 PM, Rainer Jung wrote:
+1 to everything you suggested to change. If you improve the dsps, you might
want to take
a look at
https://issues.apache.org/bugzilla/show_bug.cgi?id=43303
Yea, I'm happy to add .rc's (VERSION resources) to the binaries, should be
straightforward
On 8/24/2010 3:48 AM, Remy Maucherat wrote:
I don't remember, but I guess I changed my mind then. Real world usage
difficulties mean it is very hard to require something newer than APR
1.3.
Nonsense, httpd 2.4 (now in beta as 2.3.6) requires APR. Forward looking
releases, e.g. those in
On 7/15/2010 9:44 PM, Yoav Shapira wrote:
On Thu, Jul 15, 2010 at 8:51 AM, Mark Thomas ma...@apache.org wrote:
I'm teaching a Tomcat course today and tomorrow and one of the students
raised the question why is the default host called localhost? The implied
relationship to 127.0.0.1 was causing
On 5/29/2010 8:56 AM, Rahul Akolkar wrote:
As indicated below, I will now be requesting infra close these lists
with qmail forwards to d...@tomcat.
I've found, in managing a host of httpd and apr related lists, that sending
a final closure message, verifying all *.apache.org references to the
On 4/14/2010 4:22 PM, sebb wrote:
Also, SVN is considered by some to be publishing code (e.g. links are
usually published on the web-site) so better safe than sorry.
SVN is a development/work product area. Although now we have dist.apache.org/
which is, pretty clearly, a dist'ribution point
On 4/14/2010 5:32 PM, sebb wrote:
On 14/04/2010, William A. Rowe Jr. wr...@rowe-clan.net wrote:
On 4/14/2010 4:22 PM, sebb wrote:
Also, SVN is considered by some to be publishing code (e.g. links are
usually published on the web-site) so better safe than sorry.
SVN is a development
On 3/22/2010 9:35 PM, Kevan Miller wrote:
Apologies for the broadcast message...
In thinking about ApacheCon 2010, I began to wonder if there is interest in
creating an Enterprise Java track for the conference. I think there is the
potential for a lot of interesting content. Many of our
On 3/18/2010 11:00 AM, jean-frederic clere wrote:
Hi,
We all want to see a Tomcat track at the ApacheConNA2010, don't we?
I have created a wiki page to collect the presentation proposals.
Fell free to add the stuff you would like to present at the ApacheCon.
The tomcat PMC will review it
On 3/2/2010 7:18 AM, Mark Thomas wrote:
On 02/03/2010 00:20, Sandro Martini wrote:
For a Full Administration Console (I don't see this since a long time)
we have to see later, this is complex and requires many features ...
This is the bit that, to me, offers an opportunity for real value.
On 2/4/2010 3:44 AM, Konstantin Kolinko wrote:
2010/2/3 William A. Rowe Jr. wr...@rowe-clan.net:
That said, there are now two platforms, your original svn.apache.org space
and now dist.apache.org/repos/dist/, which is for publishing artifacts. It
might make sense to mirror the published
On 2/3/2010 10:45 AM, Mark Thomas wrote:
On 03/02/2010 13:21, Yoav Shapira wrote:
Please see Justin's proposal below for the Incubator. (From a
general, public list.)
I think it'd be great for Tomcat to do the same. Your thoughts / votes?
Generally +1. Need to think about how we handle
On 2/3/2010 12:31 PM, Mark Thomas wrote:
On 03/02/2010 18:07, Filip Hanik - Dev Lists wrote:
and all the .exe files are gone, from the .zip file, this is a pain in
the ass, no windows without installer?
why the change from .20 to .24? should just be a build update?
As per the discussion
Mladen Turk wrote:
On 12/21/2009 11:39 PM, jean-frederic clere wrote:
The candidates binaries are available here:
http://people.apache.org/~jfclere/tomcat-6/v6.0.21/
According to the release process, the 6.0.21 tag is:
[X] Broken
[ ] Alpha
[ ] Beta
[ ] Stable
tcnative-1.dll in the
Brane F. Gračnar wrote:
Hello :)
This patch adds support for X-Forwarded-For (or any other) http request
header
holding ip address of real client so that request.getRemoteAddr() return
correct address if tomcat is running behind apache or any other reverse http
proxy.
Note you can't
jean-frederic clere wrote:
Hi,
It seems there is a bunch of KEYS file in the
https://svn.apache.org/repos/asf/tomcat and in the web site.
Should we only have one of those?
http://www.apache.org/dist/tomcat/KEYS is really all you need or even
want to maintain.
Uwe Günther wrote:
So I wasn't so wrong with the first one. Unfortunately there was nothing
to code at all.
So I am gonna go for some odd ones and go on with the good things to do.
How does this work for non commiters; if they have a patch? Ok, 1st
attach the patch to the bug, 2nd...?
Henri Gomez wrote:
The question here is :
Why did we use unixd_set_global_mutex_perms/ap_unixd_set_global_mutex_perms
since both call didn't exist in i5/OS V6R1 and I had to set
JK_NEED_SET_MUTEX_PERMS to 0 to have them excluded.
Because otherwise, root created file locking objects are
The following page has been changed by JeanFredericClere:
http://wiki.apache.org/tomcat/TomcatTrackUs09
FYI - I'm having problems groking this, so I presume the general public
will have the same trouble...
Track Description
+ This track will give you all you need to know about the
Mladen Turk wrote:
William A. Rowe, Jr. wrote:
You have three groups, general users, Tomcat users, and Tomcat
Admins.
I understand the second two, and have no clue what you mean by
general :)
It should mean 'Anyone', not just users/admins already familiar
(to some extend) to Tomcat
Rainer Jung wrote:
So I like the idea of using Id, but I am open to arguments for dropping it.
In httpd, we use; !-- $LastChangedRevision: 654723 $ -- in the reference
file, and the tag !-- English Revision: 421100:654723 (outdated) -- which
is updated in order to determine how far out of sync
Mladen Turk wrote:
Konstantin Kolinko wrote:
so -win32-x86-native, -win32-x64 and -win32-ia64 would make perfect
sense.
Fine with me.
32 in -win32-x64 looks odd.
Right win64-x64 would make more sense.
Irrelevant.
There is no win64, but there could be. Linux and most Unicies use
Mladen Turk wrote:
Nevertheless, how about creating separate .zips that
would contain tomcat(X)w.exe tomcat(X).exe service.bat
and tcnative-1.dll
eg.
apache-tomcat-6.0.21-win32-native.zip
apache-tomcat-6.0.21-win64-native.zip
apache-tomcat-6.0.21-win64-ia64-native.zip
ia64 != x64, you
mt...@apache.org wrote:
+runas /env /savecred /user:%SERVICE_USER% %COMSPEC% /K \%SELF%\
%SERVICE_CMD% %SERVICE_NAME%
review your cmd.exe syntax. cmd /k is wrong here, that's to persist
a shell. You meant /c I suspect.
-
To
Filip Hanik - Dev Lists wrote:
sebb wrote:
There's also a suggested set on the Apache site, see:
http://www.apache.org/dev/version-control.html#https-svn-config
that's exactly my point, everytime I just onto a new machine, and I
forget, which I'm bound to do, to set the config file
Mark Thomas wrote:
Folks,
I have been looking at bug 46950 [1]. Everything is fine with the BIO
connector but with APR the renegotiation fails to trigger a request for
the user's certificate. I assume that this is because the socket is
still associated with an SSLContext where the
William A. Rowe, Jr. wrote:
Mark Thomas wrote:
Folks,
I have been looking at bug 46950 [1]. Everything is fine with the BIO
connector but with APR the renegotiation fails to trigger a request for
the user's certificate. I assume that this is because the socket is
still associated
Henri Gomez wrote:
If i recall the tomcat story (10 years).
Today
Sun has it's own implementation, Grizzly.
Jboss forked tc code in it's own implémentation for AS.
Spring Source embed it in it's DM server.
It's disturbing that you fail to mention Geronimo altogether. If we can't
have
Mladen Turk wrote:
The problem with mod_proxy and mod_cluster is the
fact they are targeted for a *single* web server (httpd)
Which varies from a one off poorly defined protocol how, exactly?
They don't have the generic web server API like mod_jk
does, and all of them doesn't support async
If there's a desire to move ahead with a new connector at the tomcat
project, and the branch/release approach is planned to yield stable
code that will improve from release to release, why even retain the
association to 'jk'? It seems it would benefit the effort if stable
code was released with
Henri Gomez wrote:
mod_jk is not a 'regular' Apache HTTPd module, since it could be used
with IIS, Domino, iPlanet and got JNI support.
Of course I understand all that.
But why call it after 'jakarta'?
My point is that tomcat/7.0/connectors could use a fresh new name.
Mark Thomas wrote:
Filip Hanik - Dev Lists wrote:
you don't need to lobby, simply create a patch in Bugzilla
Although it is likely to get ignored / end up as WONTFIX. I don't see
what the security issue is here. How does an MD5 collisions affect the
security of the session ID?
The only
Mark Thomas wrote:
Rainer Jung wrote:
Hi,
we now have tcnative 1.1.x and trunk. What's our goal w.r.t. API stability?
My understanding was that trunk was created to introduce APR 1.3 and
that the result would be tcnative 1.2.x.
APR 1.3 is abi compatible to 1.2 - although you famously
Mladen Turk wrote:
Mladen Turk wrote:
Mladen Turk wrote:
Hello to the Tomcat team,
Native 1.1.16 has been available for testing for almost a week,
so I would like to proceed with the release vote.
So far only one binding vote has been recorded
(Thanks Henri), and mine by
[EMAIL PROTECTED] wrote:
Author: markt
Date: Sat Nov 15 04:59:01 2008
New Revision: 714246
URL: http://svn.apache.org/viewvc?rev=714246view=rev
Log:
Update KEYS with changes from 6.0.x (Remy updated his key)
-pub 1024D/41E49465 2006-11-08
- Key fingerprint = 80FF 76D8 8A96 9FE4
Hello Experts,
the AC/US planning team has a 1hr gap in the program, of the Security
topic track 1 on Thursday 6 November.
http://us.apachecon.com/c/acus2008/schedule/2008/11/06
Please get back to me ASAP if you have (or would like to create) a session
that hits one or more of the bullets
Andre-John Mas wrote:
Just to repeat what I stated in the ticket:
The problem I have with the suggested approach is that it treats UTF-8
as an
exception, rather that a norm for my whole application server. I am not
sure
that I should be having to be specifying the encoding before handling
Tim Whittington wrote:
The bizarre thing is it seems to have built without issue on Linux, HP-UX
(two archs) and AIX/Power.
That undefined symbols thing is windows specific, most unix compilers building
a lib or module won't complain, so your observation is perfectly normal. But
getting this
George Sexton wrote:
I guess I'm not understanding how you use the term regression. 5.5.25
for sure did not have this problem.
5.5.26 introduced it, and 5.5.27 has it.
How do you mean regression?
x.y.-1 was free of it and x.y.-0 demonstrated it.
This is x.y.-2 is free of it, x.y.-1
I love the way you phrased this, httpd should steal this for our site :)
Bill
[EMAIL PROTECTED] wrote:
Author: markt
Date: Thu Aug 14 03:07:25 2008
New Revision: 685838
URL: http://svn.apache.org/viewvc?rev=685838view=rev
Log:
Make purpose of security mailing list even clearer. Could now just
[EMAIL PROTECTED] wrote:
Author: markt
Date: Thu Aug 14 11:11:28 2008
New Revision: 685981
FYI, I've updated asf-mailer so it no longer directs commit traffic
to the long-dead [EMAIL PROTECTED] Which means starting at
this commit, you may have to adjust your filters. But reply-to-all
should
Mark Thomas wrote:
What mitigations are you thinking of?
The description is intended to be sufficient for a user to determine if
they match the vulnerability conditions. And this for this notice I
believe it meets this criteria.
In this case there is no way of configuring yourself away
Mark Thomas wrote:
Description:
When using a RequestDispatcher the target path was normalised before the
query string was removed. A request that included a specially crafted
request parameter could be used to access content that would otherwise be
protected by a security constraint or by
Mark Thomas wrote:
[EMAIL PROTECTED] wrote:
Author: markt
Date: Sun Jul 27 06:33:31 2008
New Revision: 680102
URL: http://svn.apache.org/viewvc?rev=680102view=rev
Log:
Fix RDF as per report on users list
This is now fixed but the data is horribly out of date? Does anyone care
about this
William A. Rowe, Jr. wrote:
Mark Thomas wrote:
[EMAIL PROTECTED] wrote:
Author: markt
Date: Sun Jul 27 06:33:31 2008
New Revision: 680102
URL: http://svn.apache.org/viewvc?rev=680102view=rev
Log:
Fix RDF as per report on users list
This is now fixed but the data is horribly out of date
Tim Funk wrote:
Since there was never a release from trunk - there really isn't a change
log. When trunk is released as a new branch it should have a
RELEASE-NOTES which highlight why its a different branch but maintaining
change log for an unreleased version doesn't make much sense to me.
Although it's a little goofy to f/w this to the tomcat list, it seems this
might clear up your fluxored mod_jk test ;-)
---BeginMessage---
Author: wrowe
Date: Wed Apr 9 01:48:19 2008
New Revision: 646229
URL: http://svn.apache.org/viewvc?rev=646229view=rev
Log:
Per httpd/trunk r440337 - Replace
Rainer Jung wrote:
Hi Bill,
thanks for this. The problem though is not with the test, but if your
compilation environment does not match your runtime environment. In
Henri's case, and also in the case where we provide binaries, the build
environment contains a newer version of 2.2.x httpd
Rainer Jung wrote:
Hmmm, I'm talking only about 2.2. The function ap_get_server_banner()
has been added between 2.2.3 and 2.2.4 with an associated minor MMN
bump. So any module build against 2.2.4 using ap_get_server_banner()
shielded by AP_MODULE_MAGIC_AT_LEAST(20051115,4) will not load
The standard is only 7 1/2 years old;
http://www.ietf.org/rfc/rfc2965
Jim Manico wrote:
According to Daniel Stenberg, Cookies are not even *mentioned* in RFC2616
Per http://lists.w3.org/Archives/Public/ietf-http-wg/2008JanMar/0623.html
On Tue, 18 Mar 2008, Jim Manico wrote:
Are there any
Mark Thomas wrote:
Henri Gomez wrote:
Hi to all,
I used to get the win32 tcnative at http://tomcat.heanet.ie/native/
but there is only a 1.1.12 there.
Do you know alternate location ?
Nothing I am aware of. That is where they are currently uploaded to.
Also, shouldn't we provide such
Jim Jagielski wrote:
Requiring any specific order on HTTP response headers is
completely bogus...
:)
To elaborate on why Jim thinks so (and we all agree)...
- it's not spec. You cannot rely on this when authoring a user agent.
- proxies can and will reorder whatever pretty order you assign
Rainer Jung wrote:
- cleanup and prepare for each of the targets underneath or release.
Either way, since in the source tgz target there is already an exclude
list, I would prefer to update that exclude list and use the same one
whereever possible, so something like:
FYI - this is all
robingandhi21 wrote:
Info regarding FIPS is:The Federal Information Processing Standard 140-1
(FIPS 140-1) and its successor FIPS 140-2 are United States Government
standards that provide a benchmark for implementing cryptographic software.
They specify best practices for implementing crypto
Mladen Turk wrote:
OK if you insist.
The *Foundation* insists ;-)
I suppose we can then use the src tarball from the heanet.ie
site (used by the installer BTW) instead dist site.
Or you can remove the file to /dev/dist/, and hold a release vote already?
Or we can have it inside
Mladen Turk wrote:
Because it's native and the one that makes a release needs
some extra prerequisites to build it.
Part of this confusion is that projects never vote on binary
artifacts, they vote on source code releases.
Because the sources land in tags/ and a tarball, I'd strongly
Guys - this isn't how you use voting ... if there is an incorrectly
branded file in svn, it doesn't matter which branch it is on.
It's commit then review; review r598412 already, and either justify
it or revert the original change. It's not subject to a backport
debate. Citation of whatever
Mark Thomas wrote:
William A. Rowe, Jr. wrote:
Contrawise, why wait, and why a tag? Usually most efforts (in order to
preserve history) branch from trunk or branches, whereas tags/* reflect
an endpoint (end of history). Simply branch from 6.0.x unless there are
dirty secrets buried
jean-frederic clere wrote:
Mark Thomas wrote:
Mark Thomas wrote:
svn cp
https://svn.apache.org/repos/asf/tomcat/tc6.0.x/tags/TOMCAT_6_0_15
https://svn.apache.org/repos/asf/tomcat/tc6.1.0/trunk
https://svn.apache.org/repos/asf/tomcat/tc6.0.x/tags/TOMCAT_6_0_15
[EMAIL PROTECTED] wrote:
Author: markt
Date: Fri Oct 26 19:02:00 2007
New Revision: 589039
URL: http://svn.apache.org/viewvc?rev=589039view=rev
Log:
Move site tag to archive
Can we please beg that next time you do this atomically?
If you ask nicely, someone in infra can momentarilly remove
Mark Thomas wrote:
In light of the recent vote, we need to make some changes to svn. In
short we need to add:
6.2.x
? Where is 6.1.0, or in other words, why the skip?
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For
Mark Thomas wrote:
William A. Rowe, Jr. wrote:
Mark Thomas wrote:
In light of the recent vote, we need to make some changes to svn. In
short we need to add:
6.2.x
? Where is 6.1.0, or in other words, why the skip?
The idea was to use even numbers for stable releases, odd numbers
Mark Thomas wrote:
William A. Rowe, Jr. wrote:
Actually, the way it typically works at httpd-space (which your new
policy is based on) is that you would next create 6.1.0 as a forever
development branch. Committers apply each patch they believe belongs
to the 6.2.0 release, and things
Mladen Turk wrote:
William A. Rowe, Jr. wrote:
Hey folks,
as you provide the bindings to the JSSE, even though you don't
ship the JSSE .jars - we still need Tomcat in compliance with the
federal export notification policies. I know you did some work on
this in the past, but please see
Yoav Shapira wrote:
Hey,
On 9/26/07, William A. Rowe, Jr. [EMAIL PROTECTED] wrote:
Please advice what's needed to be done to get the ECCN numbers.
Read that page, please raise any questions that you have after you've
covered it. You'll be glad to know once these notices are sent, you'll
Yoav Shapira wrote:
Hey,
On 9/26/07, William A. Rowe, Jr. [EMAIL PROTECTED] wrote:
Please advice what's needed to be done to get the ECCN numbers.
Read that page, please raise any questions that you have after you've
covered it. You'll be glad to know once these notices are sent, you'll
Mladen Turk wrote:
William A. Rowe, Jr. wrote:
it's sort of a closed loop problem. Update the info, allow the usual
one hour after updating from minotaur to sync, and then shoot out the
notice referencing the list of notices sent :)
Can we get an example email that needs to be send
Mladen Turk wrote:
William A. Rowe, Jr. wrote:
Mladen Turk wrote:
William A. Rowe, Jr. wrote:
it's sort of a closed loop problem. Update the info, allow the usual
one hour after updating from minotaur to sync, and then shoot out the
notice referencing the list of notices sent :)
Can we
Hey folks,
as you provide the bindings to the JSSE, even though you don't
ship the JSSE .jars - we still need Tomcat in compliance with the
federal export notification policies. I know you did some work on
this in the past, but please see
http://www.apache.org/dev/crypto.html
for ASF policies,
1 - 100 of 200 matches
Mail list logo