On 14.07.20 11:12, Christoph Kukulies wrote:
> I found there are some mismatches in file ownership from manual installation
> and moving around webapps trees from different tomcat versions.
> My current tomcat (9) runs under user.group tomcat.tomcat. A couple of files
> have ownership
>
> root.tomcat
> tomcat8.
>
> Would it be ok to chown all files below and including webapps to
> tomcat.tomcat?
It depends (TM)
There are those who can't operate without tomcat having write access to
its own operations, e.g. because they rely on the manager app for
deployments.
And there are those who prefer Tomcat to not have any write access to
its own applications, as a means of hardening the installation.
My preference is to limit write permissions (and ownership) to temp,
work and logs. Your mileage may vary.
Olaf
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
