You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by kk...@apache.org on 2011/04/02 04:03:36 UTC
svn commit: r1087959 -
/tomcat/tc5.5.x/trunk/container/catalina/src/conf/catalina.policy
Author: kkolinko
Date: Sat Apr 2 02:03:35 2011
New Revision: 1087959
URL: http://svn.apache.org/viewvc?rev=1087959&view=rev
Log:
Wrap a long comment in catalina.policy
CTR
Modified:
tomcat/tc5.5.x/trunk/container/catalina/src/conf/catalina.policy
Modified: tomcat/tc5.5.x/trunk/container/catalina/src/conf/catalina.policy
URL: http://svn.apache.org/viewvc/tomcat/tc5.5.x/trunk/container/catalina/src/conf/catalina.policy?rev=1087959&r1=1087958&r2=1087959&view=diff
==============================================================================
--- tomcat/tc5.5.x/trunk/container/catalina/src/conf/catalina.policy (original)
+++ tomcat/tc5.5.x/trunk/container/catalina/src/conf/catalina.policy Sat Apr 2 02:03:35 2011
@@ -14,7 +14,7 @@
// limitations under the License.
// ============================================================================
-// catalina.corepolicy - Security Policy Permissions for Tomcat 5
+// catalina.policy - Security Policy Permissions for Tomcat 5
//
// This file contains a default set of security policies to be enforced (by the
// JVM) when Catalina is executed with the "-security" option. In addition
@@ -93,10 +93,14 @@ grant codeBase "file:${catalina.home}/bi
permission java.io.FilePermission "${catalina.base}${file.separator}logs${file.separator}*", "read, write";
permission java.lang.RuntimePermission "getClassLoader";
permission java.lang.RuntimePermission "setContextClassLoader";
- // To enable per context logging configuration, permit read access to the appropriate file.
- // Be sure that the logging configuration is secure before enabling such access
- // eg for the examples web application:
- // permission java.io.FilePermission "${catalina.base}${file.separator}webapps${file.separator}examples${file.separator}WEB-INF${file.separator}classes${file.separator}logging.properties", "read";
+ // Note: To enable per context logging configuration, permit read access to
+ // the appropriate file. Be sure that the logging configuration is
+ // secure before enabling such access.
+ // E.g. for the examples web application (uncomment and unwrap
+ // the following to be on a single line):
+ // permission java.io.FilePermission "${catalina.base}${file.separator}
+ // webapps${file.separator}examples${file.separator}WEB-INF
+ // ${file.separator}classes${file.separator}logging.properties", "read";
};
// These permissions apply to the servlet API classes
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org