You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by bu...@apache.org on 2015/03/20 21:52:07 UTC
[Bug 57465] Build TC Native with with latest OpenSSL to address CVEs
https://bz.apache.org/bugzilla/show_bug.cgi?id=57465
--- Comment #7 from michael.litwak@nuix.com ---
I took a look at the steps for building tcnative-1.dll, at
http://wiki.apache.org/tomcat/BuildTcNativeWin, and found them to be beyond my
skill level.
I've asked the vendor of the application I use, Atlassian JIRA (for Windows) to
build tcnative-1.dll for me, linked to the latest OpenSSL 1.0.1m and APR. See
https://jira.atlassian.com/browse/JRA-38927. But they have never directly
responded to any of my comments/requests, and havev yet to make newer builds of
tcnative-1.dll available.
So, I request that a fresh build of tcnative-1.dll, linked to OpenSSL 1.0.1m
and the newest APR, be made and posted up on
http://apache.org/dist/tomcat/tomcat-connectors/native/. This would be a great
service to users of products such as atlassian JIRA for Windows, who currently
lack a way to securely deploy public-facing server instances.
Thanks,
- Michael
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org