Return-Path: Mailing-List: contact tomcat-dev-help@jakarta.apache.org; run by ezmlm Delivered-To: mailing list tomcat-dev@jakarta.apache.org Received: (qmail 83850 invoked from network); 18 Sep 2000 20:08:02 -0000 Received: from adsl-63-198-47-229.dsl.snfc21.pacbell.net (HELO costin.dnt.ro) (63.198.47.229) by locus.apache.org with SMTP; 18 Sep 2000 20:08:02 -0000 Received: from yahoo.com (costin [63.198.47.229]) by costin.dnt.ro (8.9.3+Sun/8.9.1) with ESMTP id NAA08982 for ; Mon, 18 Sep 2000 13:09:49 -0700 (PDT) From: cmanolache@yahoo.com Sender: costin@costin.dnt.ro Message-ID: <39C67913.449376A5@yahoo.com> Date: Mon, 18 Sep 2000 13:20:35 -0700 X-Mailer: Mozilla 4.74 [en] (X11; U; Linux 2.2.16-17 i686) X-Accept-Language: en MIME-Version: 1.0 To: tomcat-dev@jakarta.apache.org Subject: Re: WEB-INF classloading and on the fly compilation References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Spam-Rating: locus.apache.org 1.6.2 0/1000/N Nick Bauman wrote: > On Mon, 18 Sep 2000, yhs@mimic.onesourcecorp.com wrote: > > > compilation will cause r00ting of the machine instantly. tomcat runs as > > root on many systems anyway...a "rm -rf /" would not be nice on a > > Why in the hell run Tomcat as root? Totally unecessary. There's the big > mistake right there. Maybe because we don't have a small native library to change the UID. Volunteers :-) ? ( in case you run tomcat standalone on port 80 you need to start as root to get the port, but java can't change the id. I believe a production site should run apache+tomcat, but of course some people have a different opinion ) Costin