Your message dated Tue, 02 Aug 2016 10:06:33 +0000
with message-id <e1buwan-0002ke...@franck.debian.org>
and subject line Bug#825786: fixed in tomcat8 8.0.36-2
has caused the Debian Bug report #825786,
regarding tomcat8: postinst script overwrites file permissions in /etc
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
825786: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825786
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: tomcat7-admin
Version: 7.0.28-4+deb7u4
Severity: important

Dear Maintainer,
*** Please consider answering these questions, where appropriate ***

   * What led up to the situation?
        All tomcat servers crash after the auto update via unattended-upgrade
   * What exactly did you do (or not do) that was effective (or
     ineffective)?
        Correct manually our specific owner files and restart tomcat7 service
   * What was the outcome of this action?
        Impossible to start all the tomcat7 services (with JMX  configured)
   * What outcome did you expect instead?
        that the patch don't modify files that don't come from the package.

Details :
        We use a tomcat7 debian installation.
        We modify to use tomcat7:tomcat7 user for the tomcat7 processes
        we want to add JMX access configuration with user/password access -> no 
debian doc found => configuration taken from "official" oracle documentation.
                => put jmxremote.user and jmxremote.password in /etc/tomcat7 
(symlinked to /var/lib/tomcat7/conf for official oracle path conservation)
                => mandatory kmxremote.password = right 600 on the file and 
then we chown tomcat7:tomcat7 the file too.

        We use unattended-upgrade for security patch. This morning -> deploying 
some tomcat7  patch on all serveurs.
        -> In the tomcat7.postinst there is chown -Rh root:(GROUP) on 
/etc/tomcat7 !
        => jmxremote.password misconfigured and tomcat7 don't start... 

Ideas or solutions :
        Modify only files coming from the package.
        Or interesting on how debian want we configure the JMX access, as if we 
take official recommandation it leads to a fatal crash. 


-- System Information:
Debian Release: 7.9
  APT prefers oldstable-updates
  APT policy: (500, 'oldstable-updates'), (500, 'oldstable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages tomcat7-admin depends on:
ii  tomcat7-common  7.0.28-4+deb7u4

tomcat7-admin recommends no packages.

tomcat7-admin suggests no packages.

-- no debconf information

-- 
Ce courriel (incluant ses éventuelles pièces jointes) contient des informations 
confidentielles et/ou protégées ou dont la diffusion est restreinte. Si vous 
avez reçu ce courriel par erreur, vous ne devez ni le copier, ni l’utiliser, ni 
en divulguer le contenu à quiconque. Merci d’en avertir immédiatement 
l’expéditeur et d'effacer ce courriel de votre système. Renault Sport Racing 
décline toute responsabilité en cas de corruption par virus, d’altération ou de 
falsification de ce courriel lors de sa transmission par voie 
électronique.&lt;br&gt;&lt;i&gt;Renault Sport Racing s.a.s – Registre du 
Commerce et des Sociétés d'Evry (Numéro 306.140.807) – Siège social: 1-15 
Avenue du Président Kennedy, 91170 Viry Chatillon, 
France&lt;/i&gt;&lt;br&gt;This email (including any attachments) contains 
confidential and/or privileged information or information otherwise protected 
from disclosure. If you are not the intended recipient, please notify the 
sender immediately, do not copy this message or any attachments and do not use 
it for any purpose or disclose its content to any person, but delete this 
message and any attachments from your system. Renault Sport Racing disclaims 
any and all liability if this email transmission was virus corrupted, altered 
or falsified.&lt;br&gt;&lt;i&gt; Renault Sport Racing s.a.s – Commercial and 
Companies Registry of Evry (Number 306.140.807) – Registered office : 1-15 
Avenue du Président Kennedy, 91170 Viry Chatillon, France&lt;/i&gt;&lt;br&gt;

--- End Message ---
--- Begin Message ---
Source: tomcat8
Source-Version: 8.0.36-2

We believe that the bug you reported is fixed in the latest version of
tomcat8, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 825...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Markus Koschany <a...@debian.org> (supplier of updated tomcat8 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 02 Aug 2016 10:50:42 +0200
Source: tomcat8
Binary: tomcat8-common tomcat8 tomcat8-user libtomcat8-java libservlet3.1-java 
libservlet3.1-java-doc tomcat8-admin tomcat8-examples tomcat8-docs
Architecture: source
Version: 8.0.36-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 
<pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <a...@debian.org>
Description:
 libservlet3.1-java - Servlet 3.1, JSP 2.3, EL 3.0 and WebSocket 1.0 Java API 
classes
 libservlet3.1-java-doc - Servlet 3.1, JSP 2.3, EL 3.0 and WebSocket 1.0 Java 
API documenta
 libtomcat8-java - Apache Tomcat 8 - Servlet and JSP engine -- core libraries
 tomcat8    - Apache Tomcat 8 - Servlet and JSP engine
 tomcat8-admin - Apache Tomcat 8 - Servlet and JSP engine -- admin web 
application
 tomcat8-common - Apache Tomcat 8 - Servlet and JSP engine -- common files
 tomcat8-docs - Apache Tomcat 8 - Servlet and JSP engine -- documentation
 tomcat8-examples - Apache Tomcat 8 - Servlet and JSP engine -- example web 
applicati
 tomcat8-user - Apache Tomcat 8 - Servlet and JSP engine -- tools to create user
Closes: 825786
Changes:
 tomcat8 (8.0.36-2) unstable; urgency=medium
 .
   * Team upload.
   * Do not unconditionally overwrite files in /etc/tomcat8 anymore.
     (Closes: #825786)
Checksums-Sha1:
 1ce3d76233a7910e6a1d05d8ba9311fb5425af24 2948 tomcat8_8.0.36-2.dsc
 f93191d45b1b025376cc09d81bca281388c794b4 38708 tomcat8_8.0.36-2.debian.tar.xz
Checksums-Sha256:
 1d603e2d8a03ddb687500970b4f4e8aaa684109ce0062b52b3dca14af5ac8b4a 2948 
tomcat8_8.0.36-2.dsc
 b94a79873c8d90740b67c0f3131a43ceafbeb21b31eef9f365b8a58e6f8b8896 38708 
tomcat8_8.0.36-2.debian.tar.xz
Files:
 8963ccd8b1485c17112d3af6f8dccdfa 2948 java optional tomcat8_8.0.36-2.dsc
 91fd9f7aed65ea3d0dbf8aff9ae93aed 38708 java optional 
tomcat8_8.0.36-2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=Gh5R
-----END PGP SIGNATURE-----

--- End Message ---
__
This is the maintainer address of Debian's Java team
<http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers>. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Reply via email to