this bug should be closed.
the CERT never applied to jetty 5 (which is what debian uses)
and was fixed some time ago in jetty 6
Please see
http://docs.codehaus.org/display/JETTY/Jetty+Security
Note that it would also be good for debian to upgrade to jetty 6
cheers
--
To UNSUBSCRIBE, e
The patch to fix this issue for 5.1.10 is available
http://jetty.cvs.sourceforge.net/jetty/Jetty/src/org/mortbay/jetty/servlet/AbstractSessionManager.java?r1=1.52&r2=1.53
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
2 matches
Mail list logo
