In the Tomcat UG under the heading 'Modify and Customize the Batch
Files' it says one of the reasons to do so (modify start up scripts)
would be: "To switch user from root to some other user using the "su"
UNIX command."
This is an excellent idea from a security standpoint. But to bind to
port 80 (instead of the default high port 8080) root is needed. How many
applications do this (Apache for example) is to initially run as root,
bind to port 80, and then drop root privileges. Is something like this
possible with Tomcat running standalone? Running concurrently with
Apache would accomplish this because the AJP connection could be run as
any user since it's on a high port.
Thanks.
--
Geoff Lane <[EMAIL PROTECTED]>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
