Re: Tomcat as root and security issues

2007-01-28 Thread Corobitsyn Roman
Hi Try it http://wiki.apache.org/tomcat/HowTo#head-18d1c3f3fa702a1be769340784515eecce6e0ac9 JR jsvc works well for this but I haven't been able to figure JR out if it invokes java security, ideally using the JR catalina.policy. Does anyone know? Christopher Schultz [EMAIL PROTECTED] 1/26/2007

Tomcat as root and security issues

2007-01-26 Thread Gaurav Kushwaha
I read somewhere that if I want to run Tomcat standalone on port 80, I will have to run it as root and that this is potentially unsafe. Is there any way for me to run it on port 80 without having to give the root privileges to the process. Thanks, Gaurav Singh Kushwaha http://www.chakpak.com

Re: Tomcat as root and security issues

2007-01-26 Thread Mikolaj Rydzewski
Gaurav Kushwaha wrote: I read somewhere that if I want to run Tomcat standalone on port 80, I will have to run it as root and that this is potentially unsafe. Is there any way for me to run it on port 80 without having to give the root privileges to the process. Use apache (+ mod_jk or

RE: Tomcat as root and security issues

2007-01-26 Thread Peter Crowther
From: Gaurav Kushwaha [mailto:[EMAIL PROTECTED] I read somewhere that if I want to run Tomcat standalone on port 80, I will have to run it as root and that this is potentially unsafe. True on UNIX, false on Windows. Is there any way for me to run it on port 80 without having to give the

Re: Tomcat as root and security issues

2007-01-26 Thread Gaurav Kushwaha
Thanks, I will read about these. Gaurav Singh Kushwaha http://www.chakpak.com Ph: +91-9880101496 Bangalore, India. On 1/26/07, Mikolaj Rydzewski [EMAIL PROTECTED] wrote: Gaurav Kushwaha wrote: I read somewhere that if I want to run Tomcat standalone on port 80, I will have to run it as

Re: Tomcat as root and security issues

2007-01-26 Thread Markus Schönhaber
Gaurav Kushwaha wrote: I read somewhere that if I want to run Tomcat standalone on port 80, I will have to run it as root and that this is potentially unsafe. That's in no way Tomcat-specific. On Unix-like systems an application needs root privileges to be able to bind to ports with numbers

Re: Tomcat as root and security issues

2007-01-26 Thread David Smith
Or the commons daemon project's jsvc which can launch as root long enough to grab port 80 and then shift to an unprivileged user for normal runtime operations. --David Peter Crowther wrote: From: Gaurav Kushwaha [mailto:[EMAIL PROTECTED] I read somewhere that if I want to run Tomcat standalone

Re: Tomcat as root and security issues

2007-01-26 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Gaurav, Also look at jsvc, which will allow you to run Tomcat as non-root and still use port 80. - -chris Mikolaj Rydzewski wrote: Gaurav Kushwaha wrote: I read somewhere that if I want to run Tomcat standalone on port 80, I will have to run it

Re: Tomcat as root and security issues

2007-01-26 Thread Jere Retzer
jsvc works well for this but I haven't been able to figure out if it invokes java security, ideally using the catalina.policy. Does anyone know? Christopher Schultz [EMAIL PROTECTED] 1/26/2007 11:24 AM -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Gaurav, Also look at jsvc, which will allow