You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@commons.apache.org by "John Kang (Jira)" <ji...@apache.org> on 2020/03/26 11:26:00 UTC

[jira] [Created] (DAEMON-417) default umask for tomcat

John Kang created DAEMON-417:
--------------------------------

             Summary: default umask for tomcat
                 Key: DAEMON-417
                 URL: https://issues.apache.org/jira/browse/DAEMON-417
             Project: Commons Daemon
          Issue Type: Bug
          Components: Jsvc
    Affects Versions: 1.2.2
            Reporter: John Kang


hello there,

 

I am not sure fi this is bug or on purpose.

tomcat document says like below.
 * [https://tomcat.apache.org/tomcat-8.5-doc/security-howto.html]
 * 29) Security Considerations -> Non Tomcat settings

{code:java}
 Tomcat runs with a default umask of 0027 to maintain
    these permissions for files created while Tomcat is running (e.g. log files,
    expanded WARs, etc.).{code}
 

I can also check the default value of umask in the catalina.sh
{code:java}
# Set UMASK unless it has been overridden
if [ -z "$UMASK" ]; then
    UMASK="0027"
fi
umask $UMASK {code}
 

however, if i run the tomcat using by jsvc, 0077 is applied by default.
 * unix/native/arguments.c : 176
 * args->umask = 0077;

 

does jsvc conform the default value described in the docment?



--
This message was sent by Atlassian Jira
(v8.3.4#803005)