tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Robert Harper" <rob...@iat-cti.com>
Subject RE: log question and lambda probe
Date Thu, 02 Nov 2006 18:24:48 GMT
I think you can specify a full path but Tomcat must have full access to the
other directory.
  <Logger className="org.apache.catalina.logger.FileLogger" debug="9"
directory="[your_path]/logs" prefix="localhost_log." suffix=".txt"
timestamp="true" verbosity="4" />
Set in the [Catalina_home]/conf/server.xml file.



As for hiding the tomcat-users data from being browsed, you will have to
turn off directory listings

  <init-param>
   <param-name>listings</param-name> 
   <param-value>false</param-value> 
  </init-param>

For the default servlet. Not a big deal. Tomcat can still read it to load
the users but will not allow browsing under the http(s)://[tomcat_host] URL.
This is set in the [Catalina_home]/conf/web.xml file.



Robert S. Harper
Information Access Technology, Inc.
-----Original Message-----
From: mast [mailto:master@tyranz.com] 
Sent: Thursday, November 02, 2006 10:33 AM
To: Tomcat Users List
Subject: Re: log question and lambda probe

Nobody has ideas ?

  ----- Original Message ----- 
  From: mast 
  To: Tomcat Users List 
  Sent: Wednesday, November 01, 2006 12:27 AM
  Subject: log question and lambda probe


  Hi again, i have download the lambda probe to see how it was and i have
notice some things with log,
  in their context.xml file there is :
   <Logger className="org.apache.catalina.logger.FileLogger"
                  prefix="probe."
                  suffix=".out"
                  timestamp="true"/>

  well that work wells but put the log under the logs directory of tomcat i
wonder if there is no way to put it elsewhere ? (like in the same webapps
that want the log)
  i have try with :
  <Logger className="org.apache.catalina.logger.FileLogger"
                  directory="/usr/local/tomcat5/webapps/users3/ROOT/"    
                  prefix="probe."
                  suffix=".out"
                  timestamp="true"/>

  without any succes, is it possible or must i forget this ?

  one other problem i have with this application (the same problem that i
talk two days ago about permission) is that we need to put the user/password
under the tomcat-users.xml file, and like Chuck said this file must be
readable by tomcat user.

  so the server that will serve the probe application (or any other of my
context) is user tomcat and so any jsp script that a user that has an access
to the server can read the tomcat-users.xml file because that s the same
owner (don t know if i explain well)

  i have heard about the security manager maybe it s the solution (but not
sure because when i run in security mode many webapps doesn't work anymore)

  well if someone has an advice about that 
  that question may seem silly but i am concerned with security and doesn t
find any answer that i could really use until now.
  Thx



---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message