On 11/5/2014 1:34 PM, Igal @ getRailo.org wrote:
hi,
what are the security best practices for running Tomcat as a Windows
Service?
is the local system account safe or am I better off creating a new user
and giving it write permissions only to the Tomcat runtime folders and
read permissions to
In my previous employment, we did that. Create a local user account and
set permissions to the Tomcat installation directory and optional
CATALINA_BASE (if you separated them).
I agree with this (done hundreds of times), and you can set rights
with xcacls. However this reminds us that usually
In my previous employment, we did that. Create a local user account and
set permissions to the Tomcat installation directory and optional
CATALINA_BASE (if you separated them).
I agree with this (done hundreds of times), and you can set rights
with xcacls. However this reminds us that usually
hi,
what are the security best practices for running Tomcat as a Windows
Service?
is the local system account safe or am I better off creating a new user
and giving it write permissions only to the Tomcat runtime folders and
read permissions to the web contents folder?
TIA
--
Igal Sapir
Railo
On Wed, Nov 5, 2014 at 1:34 PM, Igal @ getRailo.org i...@getrailo.org
wrote:
hi,
what are the security best practices for running Tomcat as a Windows
Service?
is the local system account safe
Define safe. LocalSystem has too many privs that a Tomcat service account
doesn't need in my