DO NOT REPLY [Bug 45709] New: Incorrect configuration in default catalina.policy

Thu, 28 Aug 2008 17:12:51 -0700 

https://issues.apache.org/bugzilla/show_bug.cgi?id=45709

           Summary: Incorrect configuration in default catalina.policy
           Product: Tomcat 5
           Version: 5.5.26
          Platform: PC
        OS/Version: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Catalina
        AssignedTo: [EMAIL PROTECTED]
        ReportedBy: [EMAIL PROTECTED]


Problem:
The zipfile distribution of Apache-Tomcat-5.5.26 contains an improper
conf/catalina.policy file with regards to logging permissions when running with
-security option.  It may exist in the other distribution packages.  I have not
checked them.

To reproduce:
Download apache-tomcat-5.5.26.zip distribution
Expand the zip file to a folder
Run the command {catalina.hom}/bin/catalina run -security

Cause:
There are two corrections that need to be made actually.
1.  The commons-logging-api jar that is packaged with apache-tomcat-5.5.26 is
named "commons-logging-api-1.1.1.jar".  The catalina.policy file grants
permissions to "commons-logging-api.jar".
2.  After correcting the first cause, you will need three permissions set for
${catalina.home}/bin/tomcat-juli.jar.  These are due to the bundled example
webapps.  Please add the following lines to the default permissions list for
juli --

permission java.io.FilePermission
"${catalina.base}${file.seaparator}webapps${file.separator}examples${file.separator}WEB-INF${file.separator}classes${file.separator}logging.properties",
"read";

permission java.io.FilePermission
"${catalina.base}${file.seaparator}webapps${file.separator}servlets-examples${file.separator}WEB-INF${file.separator}classes${file.separator}logging.properties",
"read";

permission java.io.FilePermission
"${catalina.base}${file.seaparator}webapps${file.separator}jsp-examples${file.separator}WEB-INF${file.separator}classes${file.separator}logging.properties",
"read";


-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to