Author: markt
Date: Thu Dec 29 08:06:24 2011
New Revision: 1225464
URL: http://svn.apache.org/viewvc?rev=1225464view=rev
Log:
Code clean-up. Run UCDetector over o.a.el
Modified:
tomcat/trunk/java/org/apache/el/lang/ExpressionBuilder.java
Author: markt
Date: Thu Dec 29 08:07:03 2011
New Revision: 1225465
URL: http://svn.apache.org/viewvc?rev=1225465view=rev
Log:
Fix import order
Modified:
tomcat/trunk/java/org/apache/catalina/authenticator/NonLoginAuthenticator.java
Modified:
On 29/12/2011 07:49, Brian Burch wrote:
On 29/12/11 15:50, Bill Barker wrote:
Thanks for looking at the two errors for me, Bill. It was hard to see
your comments because the formatting of your reply appeared mangled when
I received it. I have snipped out everything except the important bits
Author: markt
Date: Thu Dec 29 08:07:54 2011
New Revision: 1225467
URL: http://svn.apache.org/viewvc?rev=1225467view=rev
Log:
Code clean-up. Run UCDetector over o.a.juli
Modified:
tomcat/trunk/java/org/apache/juli/AsyncFileHandler.java
Author: markt
Date: Thu Dec 29 08:08:33 2011
New Revision: 1225468
URL: http://svn.apache.org/viewvc?rev=1225468view=rev
Log:
Clean-up. No functional change.
Modified:
tomcat/trunk/java/org/apache/naming/factory/EjbFactory.java
Modified:
Author: markt
Date: Thu Dec 29 08:09:40 2011
New Revision: 1225469
URL: http://svn.apache.org/viewvc?rev=1225469view=rev
Log:
Fix import order
Modified:
tomcat/tc7.0.x/trunk/ (props changed)
tomcat/tc7.0.x/trunk/java/org/apache/catalina/authenticator/NonLoginAuthenticator.java
Mark,
On 12/28/11 5:28 PM, Mark Thomas wrote:
Tomcat has implemented a work-around for this issue by providing a new
option (maxParameterCount) to limit the number of parameters processed
for a single request. This default limit is 1: high enough to be
unlikely to affect any application;
To whom it may engage...
This is an automated request, but not an unsolicited one. For
more information please visit http://gump.apache.org/nagged.html,
and/or contact the folk at gene...@gump.apache.org.
Project tomcat-trunk-test has an issue affecting its community integration.
This
From: Mark Thomas
While both POST-size-limiting and parameter-count-limiting are
both reasonable mitigating procedures, would the use of a
randomized-hash be something worth doing?
I don't know. My instinct is that it wouldn't but I could be wrong.
Referring to
Dear Wiki user,
You have subscribed to a wiki page or wiki category on Tomcat Wiki for change
notification.
The FrontPage page has been changed by KonstantinKolinko:
http://wiki.apache.org/tomcat/FrontPage?action=diffrev1=29rev2=30
Comment:
Protect the page
+ #acl
2011/12/28 Mark Thomas ma...@apache.org:
Given we see almost as many spam changes as valid ones, is it time for this:
http://wiki.apache.org/general/OurWikiFarm#per_wiki_access_control_-_tighten_your_wiki_just_a_little.2C_benefit_just_a_lot
-1.
I do not see benefits from proposed change and I
On 29/12/2011 18:00, Konstantin Kolinko wrote:
2011/12/28 Mark Thomas ma...@apache.org:
Given we see almost as many spam changes as valid ones, is it time for this:
http://wiki.apache.org/general/OurWikiFarm#per_wiki_access_control_-_tighten_your_wiki_just_a_little.2C_benefit_just_a_lot
-1.
Author: markt
Date: Thu Dec 29 19:35:29 2011
New Revision: 1225625
URL: http://svn.apache.org/viewvc?rev=1225625view=rev
Log:
UCDetector changes
Modified:
tomcat/trunk/java/org/apache/naming/ContextAccessController.java
tomcat/trunk/java/org/apache/naming/NamingContext.java
On 29/12/2011 15:44, Christopher Schultz wrote:
Mark,
On 12/28/11 5:28 PM, Mark Thomas wrote:
Tomcat has implemented a work-around for this issue by providing
a new option (maxParameterCount) to limit the number of
parameters processed for a single request. This default limit is
1:
Author: markt
Date: Thu Dec 29 19:44:04 2011
New Revision: 1225626
URL: http://svn.apache.org/viewvc?rev=1225626view=rev
Log:
UCDetector changes. Make read-only fields final
Modified:
tomcat/trunk/java/org/apache/naming/resources/ProxyDirContext.java
2011/12/29 Christopher Schultz ch...@christopherschultz.net:
Mark,
On 12/28/11 5:28 PM, Mark Thomas wrote:
Tomcat has implemented a work-around for this issue by providing a new
option (maxParameterCount) to limit the number of parameters processed
for a single request. This default limit is
Author: markt
Date: Thu Dec 29 19:44:49 2011
New Revision: 1225627
URL: http://svn.apache.org/viewvc?rev=1225627view=rev
Log:
UCDetector. Deprecate / add TODOs to currently unused code
Modified:
tomcat/trunk/java/org/apache/naming/ContextBindings.java
Author: markt
Date: Thu Dec 29 19:45:32 2011
New Revision: 1225628
URL: http://svn.apache.org/viewvc?rev=1225628view=rev
Log:
Remove unused code
Modified:
tomcat/trunk/java/org/apache/naming/ContextBindings.java
tomcat/trunk/java/org/apache/naming/resources/ProxyDirContext.java
Author: markt
Date: Thu Dec 29 19:45:58 2011
New Revision: 1225629
URL: http://svn.apache.org/viewvc?rev=1225629view=rev
Log:
Make frequently failing test disabled by default until we can figure out
what is going wrong
Modified:
tomcat/trunk/build.properties.default
Author: markt
Date: Thu Dec 29 19:49:28 2011
New Revision: 1225631
URL: http://svn.apache.org/viewvc?rev=1225631view=rev
Log:
UCDectetor: Deprecate / add TODOs to currently unused code
Modified:
tomcat/tc7.0.x/trunk/ (props changed)
Author: markt
Date: Thu Dec 29 19:51:43 2011
New Revision: 1225632
URL: http://svn.apache.org/viewvc?rev=1225632view=rev
Log:
Disable Comet tests by default for now
Modified:
tomcat/tc7.0.x/trunk/ (props changed)
tomcat/tc7.0.x/trunk/build.properties.default
Author: markt
Date: Thu Dec 29 20:06:45 2011
New Revision: 1225634
URL: http://svn.apache.org/viewvc?rev=1225634view=rev
Log:
Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=52326
Log all classloading errors during HandlesTypes processing at debug
Modified:
Author: markt
Date: Thu Dec 29 20:09:03 2011
New Revision: 1225635
URL: http://svn.apache.org/viewvc?rev=1225635view=rev
Log:
Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=52326
Reduce log level for class loading errors during @HandlesTypes processing to
debug
Modified:
https://issues.apache.org/bugzilla/show_bug.cgi?id=52326
Mark Thomas ma...@apache.org changed:
What|Removed |Added
Status|NEW |RESOLVED
https://issues.apache.org/bugzilla/show_bug.cgi?id=52381
Mark Thomas ma...@apache.org changed:
What|Removed |Added
Severity|normal |enhancement
---
Luke,
On 12/29/11 12:35 PM, Luke Meyer wrote:
From: Mark Thomas
While both POST-size-limiting and parameter-count-limiting are
both reasonable mitigating procedures, would the use of a
randomized-hash be something worth doing?
I don't know. My instinct is that it wouldn't but I could be
From: Konstantin Kolinko [mailto:knst.koli...@gmail.com]
Subject: Re: Improving wiki security
I propose to drop the sites using Tomcat list.
I have to respectfully disagree with removing that list - I think it serves a
significant purpose as Tomcat marketing material. I would add a caveat
On 28/12/11 22:27, Konstantin Kolinko wrote:
Thanks very much for your time and valuable thoughts, Konstantin.
2011/12/28 Brian Burchbr...@pingtoo.com:
snip/
However, I was a bit surprised to discover I couldn't simply wire up
netbeans to compile, run and debug any of the tomcat unit tests!
28 matches
Mail list logo
