On 30/09/2014 21:48, jean-frederic clere wrote: > The proposed Apache Tomcat 6.0.42 release is now available for voting. > > It can be obtained from: > https://dist.apache.org/repos/dist/dev/tomcat/tomcat-6/v6.0.42/ > > The Maven staging repo is: > https://repository.apache.org/content/repositories/orgapachetomcat-1023/ > The svn tag is: > http://svn.apache.org/repos/asf/tomcat/tc6.0.x/tags/TOMCAT_6_0_42/ > > The proposed 6.0.42 release is: > [X] Broken - do not release > [ ] Stable - go ahead and release as 6.0.42 Stable
The sslEnabledProtocols setting is broken for NIO which means it is not possible to mitigate POODLE for that connector. It isn't a regression as far as I can tell but I still think it is serious enough to warrant re-rolling the release after this has been fixed. Mark --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
