DO NOT REPLY [Bug 13658] - javax.servlet.request.key_size attribute isn't being set

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13658. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 11891] - JspC does not work for webapps

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=11891. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

Re: SSL client auth in Tomcat 4.0

2002-10-16 Thread jean-frederic clere
Clere, Jean-Frederic wrote: Steven Bradley wrote: I'm using Tomcat 4.0 standalone on Windows 2000 and am having trouble getting SSL client authentication working (getting SSL server auth working was a snap). Here's what I've done so far: * created a self-signed client cert using

DO NOT REPLY [Bug 13285] - admin web application fail with virtual host

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13285. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 13285] - admin web application fail with virtual host

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13285. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

linux tomcat usage

2002-10-16 Thread kannaiyan balakrishnan
Sir, I am programmer in java Servlets. Still date i am using tomcat server for windows os. Now recently i switched to linux OS. I had downloaded the linux version of jakarta-tomcat. But i couldn't able to install it. I would be happy if you specify or send me the documents of how to

DO NOT REPLY [Bug 13533] - JSPs compiled inconsistently

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13533. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

Re: linux tomcat usage

2002-10-16 Thread jean-frederic clere
kannaiyan balakrishnan wrote: Sir, I am programmer in java Servlets. Still date i am using tomcat server for windows os. Now recently i switched to linux OS. I had downloaded the linux version of jakarta-tomcat. But i couldn't able to install it. I would be happy if you specify or

DO NOT REPLY [Bug 13677] - Deployment Problem in Tomcat4.1.12

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13677. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

cvs commit: jakarta-tomcat-catalina/catalina/src/conf web.xml

2002-10-16 Thread remm
remm2002/10/16 04:44:16 Modified:catalina/src/conf web.xml Log: - Disable invoker servlet by default. Revision ChangesPath 1.5 +2 -0 jakarta-tomcat-catalina/catalina/src/conf/web.xml Index: web.xml

jsp:plugin and EMBED tags (Someone please apply this fix)

2002-10-16 Thread Andre de Jesus
As referred in bug 12794, there is a problem with the jsp:plugin generating a bad parameter list in EMBED tags. I wish to propose this fix: In jasper/src/share/org/apache/jasper/compiler/Generator.java At line 891 of version 1.35.2.8 (In 4.1.12) Where it is: String s0 =

DO NOT REPLY [Bug 13689] New: - Classloader paths for 'Common' classes and libraries are inappropriate

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13689. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 13690] New: - jndi connection pool fails with postgresql database

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13690. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 13689] - Classloader paths for 'Common' classes and libraries are inappropriate

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13689. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 13690] - jndi connection pool fails with postgresql database

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13690. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

Netbeans 3.4 with builtin Tomcat 4.0.1(problem with pathinfo)

2002-10-16 Thread Ulrik Sannsell
Hello, I am having problems with the Tomcat server in Netbeans that i run for the local testing. The problem is as follows. I have a servlet which i cannot get to work with extra path info. When i call it with http://localhost/servlet/my.servlet?param=1 it starts up the correct servlet and

DO NOT REPLY [Bug 13692] New: - request.getCharacterEncoding() is NULL

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13692. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

Re: [Security Audit] CoyoteRequest.doGetSession

2002-10-16 Thread Glenn Nielsen
The doPrivileged() for getting a session is in the CoyoteRequest public getSession() method which is implemented as required by ServletRequest and HttpServletRequest. The getSession() can be called by a web application. The doPrivileged() block would be required to exist either where it

DO NOT REPLY [Bug 10891] - mod_jk2 addcookie setheader

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=10891. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 13673] - Exception in StandardSession when writing a session manager

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13673. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

Re: [Security Audit] CoyoteRequest.doGetSession

2002-10-16 Thread Jean-Francois Arcand
Glenn Nielsen wrote: The doPrivileged() for getting a session is in the CoyoteRequest public getSession() method which is implemented as required by ServletRequest and HttpServletRequest. I'm unable to find the information in the spec. Can you point me to the section where the discuss

DO NOT REPLY [Bug 12699] - Only one cookie sent back to Apache2 with mod_jk2 and Tomcat4.1

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12699. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 12699] - Only one cookie sent back to Apache2 with mod_jk2 and Tomcat4.1

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12699. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 12699] - Only one cookie sent back to Apache2 with mod_jk2 and Tomcat4.1

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12699. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

[Newbie] Need some help

2002-10-16 Thread Todd Cary
I currently have PHP running on my Linux learning server along with Apache. Though I have been programming for a living since 1973, my knowledge of Java, how serverside Java works, how to implement JSP is nil. Is there some documentation that can get me started without overloading me with a

Re: [Newbie] Need some help

2002-10-16 Thread Henri Gomez
Todd Cary wrote: I currently have PHP running on my Linux learning server along with Apache. Though I have been programming for a living since 1973, my knowledge of Java, how serverside Java works, how to implement JSP is nil. Is there some documentation that can get me started without

cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/core StandardWrapper.java ApplicationFilterConfig.java ApplicationFilterChain.java

2002-10-16 Thread jfarcand
jfarcand2002/10/16 08:42:09 Modified:catalina/src/share/org/apache/catalina/core StandardWrapper.java ApplicationFilterConfig.java ApplicationFilterChain.java Log: Security Audit. Change the SecurityUtil package dir. Revision

Re: [Newbie] Need some help

2002-10-16 Thread Henri Gomez
Henri Gomez wrote: Todd Cary wrote: I currently have PHP running on my Linux learning server along with Apache. Though I have been programming for a living since 1973, my knowledge of Java, how serverside Java works, how to implement JSP is nil. Is there some documentation that can

cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/util SecurityUtil.java

2002-10-16 Thread jfarcand
jfarcand2002/10/16 08:43:30 Removed: catalina/src/share/org/apache/catalina/util SecurityUtil.java Log: Move the class to the security package. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]

Tomcat 5.0: primary development platform

2002-10-16 Thread Brzezinski, Paul J
What's the primary platform used for development of Tomcat 5.0 (or 4.1.x)? Having some issues getting things like the Channel Unix socket to work on Solaris and want to get involved if this is something that isn't being looked at because it's not an available platform to develop/test on.

cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/loader StandardClassLoader.java WebappClassLoader.java WebappLoader.java

2002-10-16 Thread jfarcand
jfarcand2002/10/16 09:08:29 Modified:catalina/src/share/org/apache/catalina/loader StandardClassLoader.java WebappClassLoader.java WebappLoader.java Log: Security Audit. Protect the findRepositories public method by cloning the

DO NOT REPLY [Bug 13658] - javax.servlet.request.key_size attribute isn't being set

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13658. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 13700] New: - XML parser goes Internet when parsing a TLD

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13700. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 12794] - jsp:plugin produces unuseable embed tag

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12794. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 13536] - Erroneous code generated for jsp:param when request-time attribute value is used

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13536. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

DO NOT REPLY [Bug 13689] - Classloader paths for 'Common' classes and libraries are inappropriate

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13689. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

Re: Tomcat 5.0: primary development platform

2002-10-16 Thread Costin Manolache
Brzezinski, Paul J wrote: What's the primary platform used for development of Tomcat 5.0 (or 4.1.x)? I don't think there is any 'primary platform'. Having some issues getting things like the Channel Unix socket to work on Solaris and want to get involved if this is something that isn't

Re: [Security Audit] CoyoteRequest.doGetSession

2002-10-16 Thread Costin Manolache
I'm in the middle on this one - but I would vote for Jean-Francois proposal. Glen is right, it is possible to restrict individual managers using the policy. However as geenral programming it is better to keep the doPrivileged block as small as possible - and have each individual manager that

cvs commit: jakarta-tomcat-jasper/jasper2/src/share/org/apache/jasper/compiler TagLibraryInfoImpl.java

2002-10-16 Thread luehe
luehe 2002/10/16 10:19:19 Modified:jasper2/src/share/org/apache/jasper/compiler TagLibraryInfoImpl.java Log: Fixed Bugtraq 4763825: TagAttributeInfo.getTypeName returns null for a static attribute. Revision ChangesPath 1.18 +10 -4

Re: [Security Audit] CoyoteRequest.doGetSession

2002-10-16 Thread Glenn Nielsen
Costin Manolache wrote: I'm in the middle on this one - but I would vote for Jean-Francois proposal. Glen is right, it is possible to restrict individual managers using the policy. However as geenral programming it is better to keep the doPrivileged block as small as possible - and

Re: [Security Audit] CoyoteRequest.doGetSession

2002-10-16 Thread Jean-Francois Arcand
Glenn Nielsen wrote: Costin Manolache wrote: I'm in the middle on this one - but I would vote for Jean-Francois proposal. Glen is right, it is possible to restrict individual managers using the policy. However as geenral programming it is better to keep the doPrivileged block as

cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/security SecurityConfig.java

2002-10-16 Thread jfarcand
jfarcand2002/10/16 13:05:29 Added: catalina/src/share/org/apache/catalina/security SecurityConfig.java Log: Refactorize Catalina.java and CatalinaService.java. Merge the security code into a single class. Revision ChangesPath 1.1

cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/startup Catalina.java CatalinaService.java

2002-10-16 Thread jfarcand
jfarcand2002/10/16 13:10:01 Modified:catalina/src/share/org/apache/catalina/startup Catalina.java CatalinaService.java Log: Refactoring Catalina.java and CatalinaService.java. Merge the code into one class: o.a.c.security.SecurityConfig. Revision

cvs commit: jakarta-tomcat-jasper/jasper2/src/share/org/apache/jasper/compiler PageDataImpl.java

2002-10-16 Thread luehe
luehe 2002/10/16 13:15:32 Modified:jasper2/src/share/org/apache/jasper/compiler PageDataImpl.java Log: Removed outdated comments Revision ChangesPath 1.7 +3 -7

[Proposal] Having a Tomcat.security file.

2002-10-16 Thread Jean-Francois Arcand
Hi, I've re-factored Catalina.java and CatalinaService.java and merge the security code into a single class: o.a.c.security.SecurityConfig. This class will manage all the package access/definition security properties. Actually, the list of package access/definition are harcoded in that

security

2002-10-16 Thread Bob Herrmann
Looking into the Tomcat jars, I noticed the package org.apache.jk isn't blocked... so even with the Security Manager running, I think I am able to get catalina to load arbitrary classes like this, % org.apache.jk.apr.TomcatStarter.mainClasses = new String[]{ someClass };

Re: [Proposal] Having a Tomcat.security file.

2002-10-16 Thread Glenn Nielsen
Jean-Francois Arcand wrote: Hi, I've re-factored Catalina.java and CatalinaService.java and merge the security code into a single class: o.a.c.security.SecurityConfig. This class will manage all the package access/definition security properties. Works for me! You might consider moving

Re: [Proposal] Having a Tomcat.security file.

2002-10-16 Thread Costin Manolache
+1 on the proposal. However I'm not sure about the change on o.a.t.util, and neither the other jk packages. I do agree the package should be sealed to protect package fields and methods. But I don't think it should be restricted - or at least it should be possible for webapps to include the

Re: security

2002-10-16 Thread Bob Herrmann
On Wed, 2002-10-16 at 17:12, Costin Manolache wrote: Bob Herrmann wrote: Looking into the Tomcat jars, I noticed the package org.apache.jk isn't blocked... so even with the Security Manager running, I think I am able to get catalina to load arbitrary classes like this, %

Re: [Proposal] Having a Tomcat.security file.

2002-10-16 Thread Jean-Francois Arcand
Glenn Nielsen wrote: Jean-Francois Arcand wrote: Hi, I've re-factored Catalina.java and CatalinaService.java and merge the security code into a single class: o.a.c.security.SecurityConfig. This class will manage all the package access/definition security properties. Works for me!

cvs commit: jakarta-tomcat-jasper/jasper2/src/share/org/apache/jasper/runtime JspRuntimeLibrary.java

2002-10-16 Thread luehe
luehe 2002/10/16 14:54:58 Modified:jasper2/src/share/org/apache/jasper/runtime JspRuntimeLibrary.java Log: Output null instead of empty string for null property values in jsp:getProperty Revision ChangesPath 1.7 +4 -4

cvs commit: jakarta-tomcat-jasper/jasper2/src/share/org/apache/jasper/compiler PageDataImpl.java

2002-10-16 Thread luehe
luehe 2002/10/16 16:23:53 Modified:jasper2/src/share/org/apache/jasper/compiler PageDataImpl.java Log: Fixed 4764102: XML view of jsp page contains jsp:root elements nested in other jsp:root element Revision ChangesPath 1.8 +15 -7

Tomcat 4.0.3 doesn't deploy WAR files with particular names

2002-10-16 Thread Markus Zänglein
HI I was faced with a really strange problem today. when I wanted Tomcat to use a WAR file named wiponline.war, the server seemingly did not recognize it as a real web application. Despite of the server.xml setting UnpackWARs=true Tomcat didn't create a new directory in webapps. After only

Re: Tomcat 4.0.3 doesn't deploy WAR files with particular names

2002-10-16 Thread Jean-Francois Arcand
The appropriate forum for that type of questions will be first under tomcat-user mailling list :-) I've just rename one of my war wiponline.war file without any problems. So it is not related to Tomcat. Maybe you JDK have a bug? -- Jeanfrancois Markus Zänglein wrote: HI I was faced

cvs commit: jakarta-tomcat-jasper/jasper2/src/share/org/apache/jasper/compiler PageDataImpl.java

2002-10-16 Thread luehe
luehe 2002/10/16 16:53:02 Modified:jasper2/src/share/org/apache/jasper/compiler PageDataImpl.java Log: Fixed 4764157: jsp:text elements in the XML view of a JSP page contain no jsp:id attribute Revision ChangesPath 1.9 +11 -4

WEB.XML not reloaded???

2002-10-16 Thread Pier Fumagalli
Anyone noticed that the web.xml doesn't get reloaded when I reload a deployed context under 4.0? Or is it me being stupid? Pier -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]

[5] ClassLoader hell. Again.

2002-10-16 Thread Costin Manolache
This time I have problems with commons-logging. It seems org.apache.commons.logging.LogConfigurationException: Class org.apache.commons.logging.impl.Log4JCategoryLog does not implement Log at org.apache.commons.logging.impl.LogFactoryImpl.getLogConstructor(LogFactoryImpl.java:435) It

DO NOT REPLY [Bug 13715] New: - can't do include of fragment named .jspf

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13715. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

Re: WEB.XML not reloaded???

2002-10-16 Thread Glenn Nielsen
Pier Fumagalli wrote: Anyone noticed that the web.xml doesn't get reloaded when I reload a deployed context under 4.0? Yup, that is the way it works. A reload doesn't reload the web.xml. To force web.xml to reload you have to do a stop/start. It hasn't been fixed in Tomcat 4.1

cvs commit: jakarta-tomcat-jasper/jasper2/src/share/org/apache/jasper/compiler PageDataImpl.java

2002-10-16 Thread luehe
luehe 2002/10/16 18:35:46 Modified:jasper2/src/share/org/apache/jasper/compiler PageDataImpl.java Log: Fixed default JSP version number in XML view at 2.0 (was: 1.2) Revision ChangesPath 1.10 +4 -4

Re: [Security Audit] CoyoteRequest.doGetSession

2002-10-16 Thread Glenn Nielsen
Jean-Francois Arcand wrote: Glenn Nielsen wrote: Costin Manolache wrote: I'm in the middle on this one - but I would vote for Jean-Francois proposal. Glen is right, it is possible to restrict individual managers using the policy. However as geenral programming it is better to keep

Re: WEB.XML not reloaded???

2002-10-16 Thread Craig R. McClanahan
On Wed, 16 Oct 2002, Glenn Nielsen wrote: Date: Wed, 16 Oct 2002 20:33:43 -0500 From: Glenn Nielsen [EMAIL PROTECTED] Reply-To: Tomcat Developers List [EMAIL PROTECTED] To: Tomcat Developers List [EMAIL PROTECTED] Subject: Re: WEB.XML not reloaded??? Pier Fumagalli wrote: Anyone

cvs commit: jakarta-tomcat-5 build.properties.default build.xml

2002-10-16 Thread patrickl
patrickl2002/10/16 20:00:03 Modified:.build.properties.default build.xml Log: Adjust location of commons-launcher.jar. It is back in the dist/bin directory of its build location like it was when the code was in jakarta-commons-sandbox/daemon. Revision ChangesPath

Fernando Perez

2002-10-16 Thread Fernando Perez
I'm Tomcat learner Where need declared servlets to run this ? Where put xxx.class. in Webapps folder? Thank for all. [EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]

cvs commit: jakarta-tomcat-catalina/catalina build.xml

2002-10-16 Thread patrickl
patrickl2002/10/16 20:17:52 Modified:catalina build.xml Log: Fix typos in echo tasks Revision ChangesPath 1.25 +1 -2 jakarta-tomcat-catalina/catalina/build.xml Index: build.xml === RCS

Re: [5] ClassLoader hell. Again.

2002-10-16 Thread Costin Manolache
Answering my own mail, it seems Log is loaded twice, once during init ( and it may be related with my setup, as I have few log uses in the startup code ), and then it is loaded again from the webapp loader, but this time it's a different instance ( due to reverse order ). And somehow the check

jakarta-tomcat-connectors/jk will no longer build

2002-10-16 Thread Patrick Luby
Remy, Since the org.apache.catalina.connector.HttpResponseBase was removed from jakarta-tomcat-catalina, a clean Tomcat 5 build now breaks when compiling jakarta-tomcat-connectors/jk. Does HttpResponseBase need to be added back?: Thanks, Patrick [javac] Compiling 44 source files to

RE: Fernando Perez

2002-10-16 Thread Ed Yu
In WEB-INF/classes. -Original Message- From: Fernando Perez [mailto:[EMAIL PROTECTED]] Sent: Sat 10/17/1998 10:57 PM To: Tomcat Developers List Cc: Subject: Fernando Perez I'm Tomcat learner

RE: WEB.XML not reloaded???

2002-10-16 Thread IAS
-Original Message- From: Craig R. McClanahan [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 17, 2002 11:53 AM To: Tomcat Developers List Subject: Re: WEB.XML not reloaded??? On Wed, 16 Oct 2002, Glenn Nielsen wrote: Date: Wed, 16 Oct 2002 20:33:43 -0500 From: Glenn

Re: jakarta-tomcat-connectors/jk will no longer build

2002-10-16 Thread Costin Manolache
Patrick Luby wrote: Remy, Since the org.apache.catalina.connector.HttpResponseBase was removed from jakarta-tomcat-catalina, a clean Tomcat 5 build now breaks when compiling jakarta-tomcat-connectors/jk. Does HttpResponseBase need to be added back?: No, the tomcat4 package shouldn't

DO NOT REPLY [Bug 13700] - XML parser goes Internet when parsing a TLD

2002-10-16 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13700. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.

RE: Vote results + Security Audit redirection

2002-10-16 Thread IAS
-Original Message- From: news [mailto:[EMAIL PROTECTED]] On Behalf Of Costin Manolache Sent: Wednesday, October 16, 2002 7:46 AM To: [EMAIL PROTECTED] Subject: Vote results + Security Audit redirection It seems the vote on a tomcat-commiter list got a majority - unless all

RE: Vote results + Security Audit redirection

2002-10-16 Thread Costin Manolache
IAS wrote: I got a little bit curious about why finding bugs relevant to security and fixing them should be not open. I don't doubt that there are both merit and demerit of discussing those critical issues with full disclosure. Absolutely there may be some peril that some (bad) people can