You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by "Jockel, Jeff" <jj...@rational.com> on 2001/08/06 20:09:50 UTC

PLEASE UNSUBSCRIBE ME!!!!!


-----Original Message-----
From: Pier P. Fumagalli [mailto:pier@betaversion.org]
Sent: Friday, August 03, 2001 6:05 AM
To: tomcat-user@jakarta.apache.org
Subject: Re: Jakarta NT service


Rijk Stofberg at rijk@attix5.com wrote:

> Greetz
> 
> I have been using Tomcat in one or the other guise for a while and it =
> works really well. Recently I installed the Jakarta NT Service and that =
> works fine (I am running the 1.3.1 JVM). My only problem is running =
> Tomcat as a seperate user, with it's own permissions. I see it is =
> possible to change the user that a service runs as. This will allow me =
> to set the permissions on my filesystem (ala UNIX), so that Tomcat only =
> has access to it's own directories and minimal crucial system dirs. In =
> this manner I can reduce the security risk. My question is, "What does =
> tomcat need access to and at what level?". If I can figure this out, it =
> would really rock!
> 
> Any help is appreciated.

What Tomcat? 4.0 can do it. 3.x not (yet?)

    Pier