[Bug 57465] Build TC Native with with latest OpenSSL to address CVEs

[bu...@apache.org]

https://bz.apache.org/bugzilla/show_bug.cgi?id=57465

--- Comment #7 from michael.litwak@nuix.com ---
I took a look at the steps for building tcnative-1.dll, at
http://wiki.apache.org/tomcat/BuildTcNativeWin, and found them to be beyond my
skill level.

I've asked the vendor of the application I use, Atlassian JIRA (for Windows) to
build tcnative-1.dll for me, linked to the latest OpenSSL 1.0.1m and APR.  See
https://jira.atlassian.com/browse/JRA-38927.  But they have never directly
responded to any of my comments/requests, and havev yet to make newer builds of
tcnative-1.dll available.

So, I request that a fresh build of tcnative-1.dll, linked to OpenSSL 1.0.1m
and the newest APR, be made and posted up on
http://apache.org/dist/tomcat/tomcat-connectors/native/.  This would be a great
service to users of products such as atlassian JIRA for Windows, who currently
lack a way to securely deploy public-facing server instances.

Thanks,
- Michael

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org