Re: Testers needed for Tomcat security update
On Sun, Jan 29, 2012 at 01:14:20PM +0100, Moritz Mühlenhoff wrote:
> Moritz Mühlenhoff <email@example.com> schrieb:
> > Hi,
> > the changes needed to secure Tomcat against the recent hash collision
> > attack are large and instrusive. That's why we decided to update to
> > 6.0.35 in the upcoming stable update.
> > No breakage is expected, but we need more "beta testers" before we
> > can release the update. The packages can be fetched from
> > http://people.debian.org/~tmancill/ (6.0.35-1+squeeze1)
> > Please send negative/positive test feedback to firstname.lastname@example.org
> We've received no feedback so far. In the absence of feedback, there
> won't be a DSA.
I can try and get some testing of this done, but could you (or tmancill?)
provide signed checksums for those packages?
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)