You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@commons.apache.org by "John Kang (Jira)" <ji...@apache.org> on 2020/03/26 11:26:00 UTC
[jira] [Created] (DAEMON-417) default umask for tomcat
John Kang created DAEMON-417:
--------------------------------
Summary: default umask for tomcat
Key: DAEMON-417
URL: https://issues.apache.org/jira/browse/DAEMON-417
Project: Commons Daemon
Issue Type: Bug
Components: Jsvc
Affects Versions: 1.2.2
Reporter: John Kang
hello there,
I am not sure fi this is bug or on purpose.
tomcat document says like below.
* [https://tomcat.apache.org/tomcat-8.5-doc/security-howto.html]
* 29) Security Considerations -> Non Tomcat settings
{code:java}
Tomcat runs with a default umask of 0027 to maintain
these permissions for files created while Tomcat is running (e.g. log files,
expanded WARs, etc.).{code}
I can also check the default value of umask in the catalina.sh
{code:java}
# Set UMASK unless it has been overridden
if [ -z "$UMASK" ]; then
UMASK="0027"
fi
umask $UMASK {code}
however, if i run the tomcat using by jsvc, 0077 is applied by default.
* unix/native/arguments.c : 176
* args->umask = 0077;
does jsvc conform the default value described in the docment?
--
This message was sent by Atlassian Jira
(v8.3.4#803005)