>> Proposal #1: Release a Tomcat 3.1.1 that fixes *only* the security >> problems > +1 I'll still be for security updates but release a 3.1.1 could make some users thinking the 3.1 tree is still alive. Could be disturbing some days after 3.2 release. > > >> Proposal #2: Release a Tomcat 3.2.1 that fixes the >following security >> problems >> plus the patches committed to date. > + 1 I've also fixed ajp13/multiples cookies. Will it be included ?
- Re: [SECURITY] Security Vulnerabilities in To... Jon Stevens
- [PATCH] Jakarta site release page (was: [SECURITY... Kief Morris
- Re: [SECURITY] Security Vulnerabilities in Tomcat 3.1 ... Jon Stevens
- Re: [SECURITY] Security Vulnerabilities in Tomcat 3.1 ... Nick Bauman
- Re: [SECURITY] Security Vulnerabilities in Tomcat... Craig R. McClanahan
- Re: [SECURITY] Security Vulnerabilities in Tomcat 3.1 ... Glenn Nielsen
- Re: [SECURITY] Security Vulnerabilities in Tomcat... Craig R. McClanahan
- Re: [SECURITY] Security Vulnerabilities in To... Glenn Nielsen
- RE: [SECURITY] Security Vulnerabilities in Tomcat 3.1 ... Larry Isaacs
- RE: [SECURITY] Security Vulnerabilities in Tomcat 3.1 ... GOMEZ Henri
- RE: [SECURITY] Security Vulnerabilities in Tomcat 3.1 ... Brett Bergquist
- Re: [SECURITY] Security Vulnerabilities in Tomcat 3.1 ... Arieh Markel
- Re: [SECURITY] Security Vulnerabilities in Tomcat 3.1 ... Mike Anderson
- RE: [SECURITY] Security Vulnerabilities in Tomcat 3.1 ... Steve Downey