[
https://issues.apache.org/jira/browse/DAEMON-417?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Michael Osipov closed DAEMON-417.
---------------------------------
Resolution: Invalid
This isn't a JSVC issue, there is support:
https://github.com/apache/commons-daemon/blob/master/src/native/unix/native/arguments.c#L283-L287.
https://github.com/apache/tomcat/blob/master/bin/daemon.sh is not passing the
umask to jsvc.
Raise this issue with Tomcat in the Bugzilla.
> default umask for tomcat
> ------------------------
>
> Key: DAEMON-417
> URL: https://issues.apache.org/jira/browse/DAEMON-417
> Project: Commons Daemon
> Issue Type: Bug
> Components: Jsvc
> Affects Versions: 1.2.2
> Reporter: John Kang
> Priority: Minor
>
> hello there,
>
> I am not sure fi this is bug or on purpose.
> tomcat document says like below.
> * [https://tomcat.apache.org/tomcat-8.5-doc/security-howto.html]
> * 29) Security Considerations -> Non Tomcat settings
> {code:java}
> Tomcat runs with a default umask of 0027 to maintain
> these permissions for files created while Tomcat is running (e.g. log
> files,
> expanded WARs, etc.).{code}
>
> I can also check the default value of umask in the catalina.sh
> {code:java}
> # Set UMASK unless it has been overridden
> if [ -z "$UMASK" ]; then
> UMASK="0027"
> fi
> umask $UMASK {code}
>
> however, if i run the tomcat using by jsvc, 0077 is applied by default.
> * unix/native/arguments.c : 176
> * args->umask = 0077;
>
> does jsvc conform the default value described in the docment?
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
