https://issues.apache.org/jira/browse/SOLR-7106 is the ticket.
On Fri, Feb 13, 2015 at 7:14 PM, [email protected] < [email protected]> wrote: > Anshum (and anyone else), > > How would you feel about getting > https://issues.apache.org/jira/browse/LUCENE-6215 in, which is quite > simply moving a particular class (new to 5.x) to the correct Java package. > If this isn’t done… then I’m forced to consider marking it deprecated at > it’s current wrong location and adding a subclass with the same name in the > correct location. Yuck. > > ~ David Smiley > Freelance Apache Lucene/Solr Search Consultant/Developer > http://www.linkedin.com/in/davidwsmiley > > On Fri, Feb 13, 2015 at 4:09 AM, Anshum Gupta <[email protected]> > wrote: > >> Not exactly but the one that Mark asked for help on has a mention of this. >> >> On Fri, Feb 13, 2015 at 1:06 AM, Uwe Schindler <[email protected]> wrote: >> >>> Ah, >>> >>> >>> >>> is this related to the one where Mark Miller also asked me for help >>> during review – I wanted to take care today? >>> https://issues.apache.org/jira/browse/SOLR-6736 >>> >>> >>> >>> Uwe >>> >>> >>> >>> ----- >>> >>> Uwe Schindler >>> >>> H.-H.-Meier-Allee 63, D-28213 Bremen >>> >>> http://www.thetaphi.de >>> >>> eMail: [email protected] >>> >>> >>> >>> *From:* Anshum Gupta [mailto:[email protected]] >>> *Sent:* Friday, February 13, 2015 10:02 AM >>> >>> *To:* [email protected] >>> *Subject:* Re: [VOTE] 5.0.0 RC2 >>> >>> >>> >>> Hi Uwe, >>> >>> >>> >>> You could upload a jar to Solr via the blob handler and then register >>> this custom-handler via the configs API. >>> >>> Anyone having http access to any solr node could potentially run >>> malicious code on all nodes. >>> >>> >>> >>> >>> >>> On Fri, Feb 13, 2015 at 12:56 AM, Uwe Schindler <[email protected]> wrote: >>> >>> Hi, >>> >>> >>> >>> What are we talking about? I just heard security, but no issue number or >>> explanation what’s wrong! >>> >>> >>> >>> Uwe >>> >>> >>> >>> ----- >>> >>> Uwe Schindler >>> >>> H.-H.-Meier-Allee 63, D-28213 Bremen >>> >>> http://www.thetaphi.de >>> >>> eMail: [email protected] >>> >>> >>> >>> *From:* Shalin Shekhar Mangar [mailto:[email protected]] >>> *Sent:* Friday, February 13, 2015 9:49 AM >>> *To:* [email protected] >>> *Subject:* Re: [VOTE] 5.0.0 RC2 >>> >>> >>> >>> This is serious enough to re-spin. I have to change my vote to -1 to >>> release the current RC. >>> >>> On 13-Feb-2015 2:15 pm, "Noble Paul" <[email protected]> wrote: >>> >>> We should disable the dynamic loading by default . It's a security >>> vulnerability and users should have to explicitly enable it in a system >>> property. >>> >>> On Feb 13, 2015 6:47 AM, "Anshum Gupta" <[email protected]> wrote: >>> >>> Thank you everyone! This vote has passed and I'll start the process >>> later tonight. >>> >>> >>> >>> >>> >>> On Mon, Feb 9, 2015 at 3:16 PM, Anshum Gupta <[email protected]> >>> wrote: >>> >>> Please vote for the second release candidate for Lucene/Solr 5.0.0. >>> >>> >>> >>> The artifacts can be downloaded here: >>> >>> >>> http://people.apache.org/~anshum/staging_area/lucene-solr-5.0.0-RC2-rev1658469 >>> >>> >>> >>> Or you can run the smoke tester directly with this command: >>> >>> python3.2 dev-tools/scripts/smokeTestRelease.py >>> http://people.apache.org/~anshum/staging_area/lucene-solr-5.0.0-RC2-rev1658469 >>> >>> >>> >>> >>> >>> I could not get the above command to work as downloading some file or >>> the other timed out for me (over 6 attempts) so I instead downloaded the >>> entire RC as a tgz. I still have it here: >>> >>> >>> >>> >>> http://people.apache.org/~anshum/staging_area/lucene-solr-5.0.0-RC2-rev1658469.tgz >>> >>> >>> >>> Untar the above folder at a location of choice. Do not change the name >>> of the folder as the smokeTestRelease.py extracts information from that. >>> >>> >>> >>> and then instead of using http, used file://. Here's the command: >>> >>> >>> >>> python3.2 dev-tools/scripts/smokeTestRelease.py >>> file://<path_to_the_extracted_folder> >>> >>> >>> >>> and finally, here's my +1: >>> >>> >>> >>> > SUCCESS! [0:30:50.246761] >>> >>> >>> >>> >>> -- >>> >>> Anshum Gupta >>> >>> http://about.me/anshumgupta >>> >>> >>> >>> >>> >>> -- >>> >>> Anshum Gupta >>> >>> http://about.me/anshumgupta >>> >>> >>> >>> >>> >>> -- >>> >>> Anshum Gupta >>> >>> http://about.me/anshumgupta >>> >> >> >> >> -- >> Anshum Gupta >> http://about.me/anshumgupta >> > > -- ----------------------------------------------------- Noble Paul
