What I've done for tomcat5 is make tomcat5 the owner of server.xml, then chmod 600.
Note that if you really want this secure, you need to generate a unique shutdown string upon the install (and preferably for upgrades too). Otherwise, you just guess that it's still "SHUTDOWN" and don't need to look at the file anyway :-) Cheers, Adrian _______________________________________________ pkg-java-maintainers mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/pkg-java-maintainers
