On Wed, May 13, 2020 at 5:06 PM Patrick Baldwin
wrote:
> On Wed, May 13, 2020 at 1:31 PM Coty Sutherland
> wrote:
>
> > Hi,
> >
> > Please see responses in line below. I'm top posting a bit because the
> > thread got off in the weeds about permissions it seems, which are
> important
> > but not
On Wed, May 13, 2020 at 1:31 PM Coty Sutherland wrote:
> Hi,
>
> Please see responses in line below. I'm top posting a bit because the
> thread got off in the weeds about permissions it seems, which are important
> but not exactly relevant to your problem IMO.
>
>
Indeed, thank you.
> On Tue, M
Hi,
Please see responses in line below. I'm top posting a bit because the
thread got off in the weeds about permissions it seems, which are important
but not exactly relevant to your problem IMO.
On Tue, May 12, 2020 at 11:28 AM Patrick Baldwin
wrote:
> I've gotten passed an odd (to me, anyway)
Chris,
> Am 13.05.2020 um 16:42 schrieb Christopher Schultz
> :
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Peter,
>
> On 5/13/20 02:48, logo wrote:
>> Hi calder,
>>
>>
>>> Am 13.05.2020 um 04:59 schrieb calder :
>>>
>>> On Tue, May 12, 2020, 21:48 kohmoto
>>> wrote:
>>>
>>>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Peter,
On 5/13/20 02:48, logo wrote:
> Hi calder,
>
>
>> Am 13.05.2020 um 04:59 schrieb calder :
>>
>> On Tue, May 12, 2020, 21:48 kohmoto
>> wrote:
>>
>>> Hi, Calder,
>>>
>>> Thank you for your prompt reply. I think Tomcat binary files
>>> all hav
Hi, Logo,
My current practice is as you suggest.
Thank you for your advice.
Yours truly,
Kazuhiko Kohmoto
On 2020/05/13 15:48, logo wrote:
Hi calder,
Am 13.05.2020 um 04:59 schrieb calder :
On Tue, May 12, 2020, 21:48 kohmoto wrote:
Hi, Calder,
Thank you for your prompt reply.
I think
Hi calder,
> Am 13.05.2020 um 04:59 schrieb calder :
>
> On Tue, May 12, 2020, 21:48 kohmoto wrote:
>
>> Hi, Calder,
>>
>> Thank you for your prompt reply.
>> I think Tomcat binary files all have root priviledges.
>> Should these priviledges should be changed to user priviledges?
>>
>
>
>
Hi, Calder,
Thank you again for your prompt reply.
I will study these documents you kindly shows.
Thank you.
Yours truly,
Kazuhiko Kohmoto
On 2020/05/13 11:59, calder wrote:
Yes.
There is a "Tomcat Security" guide at the Tomcat website.
Also, Mulesoft has a good guide
https://www.mulesof
On Tue, May 12, 2020, 21:48 kohmoto wrote:
> Hi, Calder,
>
> Thank you for your prompt reply.
> I think Tomcat binary files all have root priviledges.
> Should these priviledges should be changed to user priviledges?
>
Yes.
There is a "Tomcat Security" guide at the Tomcat website. Also, Mules
Hi, Calder,
Thank you for your prompt reply.
I think Tomcat binary files all have root priviledges.
Should these priviledges should be changed to user priviledges?
Your truly,
Kazuhiko Kohmoto
On 2020/05/13 11:17, calder wrote:
If TC, running as root, is ever compromised, the compromising user
On Tue, May 12, 2020, 19:58 kohmoto wrote:
>
> On 2020/05/13 0:47, John Larsen wrote:
> > I wouldnt recommend running tomcat as root
>
> Actually I run Tomcat as root. Your recommendation seems
> against my practice. It would be appreciated if you would
> advice me about points not running as roo
Hi, John,
Actually I run Tomcat as root. Your recommendation seems
against my practice. It would be appreciated if you would
advice me about points not running as root.
Thank you.
Yours truly,
Kazuhiko Kohmto
On 2020/05/13 0:47, John Larsen wrote:
I wouldnt recommend running tomcat as root
On Tue, May 12, 2020 at 4:30 PM Patrick Baldwin
wrote:
> On Tue, May 12, 2020 at 5:13 PM Christopher Schultz <
> ch...@christopherschultz.net> wrote:
[snip]
> > There is no catalina.sh that I can find. When I googled that, I found:
> https://forums.centos.org/viewtopic.php?t=54207
> > You shoul
On Tue, May 12, 2020 at 5:13 PM Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Patrick,
>
> On 5/12/20 17:08, Patrick Baldwin wrote:
> > 102$ sudo service tomcat start Redirecting to /bin/systemctl start
> > tomcat.service
>
> Uhh
On Tue, May 12, 2020, 16:13 Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Patrick,
>
> On 5/12/20 17:08, Patrick Baldwin wrote:
> > 102$ sudo service tomcat start Redirecting to /bin/systemctl start
> > tomcat.service
>
> Uhh, do
On Tue, May 12, 2020, 16:08 Patrick Baldwin
wrote:
> On Tue, May 12, 2020 at 5:07 PM calder wrote:
>
> > On Tue, May 12, 2020, 15:49 Patrick Baldwin
> > wrote:
> >
> > > I turned off systemd for tomcat:
> > >
> > > 84$ sudo systemctl disable tomcat
> >
> > [ snip ]
> >
> > > Restarted tomcat,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Patrick,
On 5/12/20 17:08, Patrick Baldwin wrote:
> 102$ sudo service tomcat start Redirecting to /bin/systemctl start
> tomcat.service
Uhh, doesn't that just call systemd?
Are you sure it's restarting at all?
If you launch Tomcat with catalina.s
102$ sudo service tomcat start
Redirecting to /bin/systemctl start tomcat.service
On Tue, May 12, 2020 at 5:07 PM calder wrote:
> On Tue, May 12, 2020, 15:49 Patrick Baldwin
> wrote:
>
> > I turned off systemd for tomcat:
> >
> > 84$ sudo systemctl disable tomcat
>
>
>
> [ snip ]
>
> > Restarte
On Tue, May 12, 2020, 15:49 Patrick Baldwin
wrote:
> I turned off systemd for tomcat:
>
> 84$ sudo systemctl disable tomcat
[ snip ]
> Restarted tomcat, and it still runs for about 2 minutes then throws
that java.lang.OutOfMemoryError: Java heap space error and dies.
And how are you star
I turned off systemd for tomcat:
84$ sudo systemctl disable tomcat
[sudo] password:
Removed symlink /etc/systemd/system/multi-user.target.wants/tomcat.service.
Verified the setenv.sh file:
93$ ls -l /usr/share/tomcat/bin/setenv.sh
-rw-rw-r--. 1 root tomcat 110 May 11 12:56 /usr/share/tomcat/bin/
On Tue, May 12, 2020, 13:48 calder wrote:
>
> [ snip ]
>
Does their Tomcat use Systemd?
> If yes, then look for the Systemd unit file - default should be
> /etc/systemd/system/tomcat.service
> that's where they will add an entry like (or modify the existing)
> [ ... ]
> Environment='CATALIN
The permission change is a temporary one while we try and figure out why
this isn't working.
On Tue, May 12, 2020 at 4:07 PM Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> John, Patrick,
>
> On 5/12/20 11:47, John Larsen wrote:
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
John, Patrick,
On 5/12/20 11:47, John Larsen wrote:
> Should be chmod 644 and also I wouldnt recommend running tomcat as
> root.
It's not clear that Tomcaat is running as root, but it IS clear that
setenv.sh is writable by ANYBODY and likely run by
On Tue, May 12, 2020 at 10:28 AM Patrick Baldwin
wrote:
>
> I've gotten passed an odd (to me, anyway) issue with one of our clients
> CentOS systems.
>
> When our webapp starts running, tomcat dies shortly thereafter with an
> OutOfMemoryError. This apparently just started a few days ago.
>
> Sys
Should be chmod 644 and also I wouldnt recommend running tomcat as root.
John Larsen
On Tue, May 12, 2020 at 9:28 AM Patrick Baldwin
wrote:
> I've gotten passed an odd (to me, anyway) issue with one of our clients
> CentOS systems.
>
> When our webapp starts running, tomcat dies shortly there
I've gotten passed an odd (to me, anyway) issue with one of our clients
CentOS systems.
When our webapp starts running, tomcat dies shortly thereafter with an
OutOfMemoryError. This apparently just started a few days ago.
System info:
Tomcat Version: Apache Tomcat/7.0.76
JVM version: 1.8.0_191-
26 matches
Mail list logo