I don't think any user can start Tomcat, because the init script has to switch to the tomcat user at some point and this requires root privileges.
That said the 'status' option should be usable by anyone. Currently it's restricted to the administrator. Should the tomcat user be allowed to control the daemon? I'm not sure this is a good idea, because a simple malicious JSP could then stop the server. If this is really needed I think sudo should be used instead. Emmanuel Bourg __ This is the maintainer address of Debian's Java team <http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers>. Please use debian-j...@lists.debian.org for discussions and questions.
