Re: Binary build procedures

On 5/25/06, Mark Claassen <[EMAIL PROTECTED]> wrote: I have a question about two optional packages: mx4j and junit. Are they really optional? I realize that some build processes may use junit to test the build, but does it need to in the distribution? Looking at the latest binary, junit doesn

RE: Binary build procedures

ginal Message- From: Mark Claassen [mailto:[EMAIL PROTECTED] Sent: Thursday, May 25, 2006 10:04 AM To: 'Tomcat Developers List' Subject: RE: Binary build procedures > Just out of curiosity, when you say above "if something goes wrong" do > you mean with your stuff or

RE: Binary build procedures

oughly tested and probably much harder for someone like me to patch.) Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Yoav Shapira Sent: Wednesday, May 24, 2006 4:36 PM To: Tomcat Developers List Subject: Re: Binary build procedures Hi, > As i

Re: Binary build procedures

Hi, As it turns out there is a second motivation for building everything from source, and that is so if something goes wrong, we can find the problem and fix it. If we go through all the hoops now, then we won't have this additional problem when we are hurrying to fix and issue. Just out of c

RE: Binary build procedures

a runtime configuration for this? Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Yoav Shapira Sent: Tuesday, May 23, 2006 5:14 PM To: Tomcat Developers List Subject: Re: Binary build procedures Hola, On 5/23/06, Mark Claassen <[EMAIL PROTECTED]>

Re: Binary build procedures

Hola, On 5/23/06, Mark Claassen <[EMAIL PROTECTED]> wrote: Thanks for your help. I am convinced, however I am not the one that needs convincing. Do you have any idea if other companies trust the binary builds? (Is this 'paranoia' unique to my company?) It's not unique to your company, but i

RE: Binary build procedures

--Original Message- From: Tim Funk [mailto:[EMAIL PROTECTED] Sent: Tuesday, May 23, 2006 11:09 AM To: Tomcat Developers List Subject: Re: Binary build procedures The release manager (RM) - creates a binary from his copy of source. - Generates a checksum key to allow validation of no tampering o

Re: Binary build procedures

The release manager (RM) - creates a binary from his copy of source. - Generates a checksum key to allow validation of no tampering of the RM's build. The RM could insert malicious code into the build. If that were to happen - the RM would probably be kicked out of the project in a hurry. It

RE: Binary build procedures

: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Yoav Shapira Sent: Tuesday, May 23, 2006 10:53 AM To: Tomcat Developers List Subject: Re: Binary build procedures Mark, The binary distributions are handled with the same security precautions as the source ones. Each distribution file is

Re: Binary build procedures

Mark, The binary distributions are handled with the same security precautions as the source ones. Each distribution file is accompanied by its MD5 checksum and is PGP-signed by the release manager. The MD5 checksums, PGP signatures, and KEYS files (available with the distro as well as on the mai