tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ilyschenko, Vlad" <Vlad.Ilysche...@informa.com>
Subject RE: log question and lambda probe
Date Tue, 14 Nov 2006 12:21:29 GMT
As per Tomcat documentation:
http://tomcat.apache.org/tomcat-5.0-doc/config/logger.html

"directory" should work ok. Check if the user tomcat is running as has
permissions to create files in /usr/local/tomcat5/webapps/users3/ROOT/.

With regards to tomcat-users.xml this is a trade off tomcat and all
webapps running as the same OS user. The best option to use digested
passwords in tomcat-users.xml
(http://tomcat.apache.org/tomcat-5.0-doc/realm-howto.html#Digested%20Pas
swords) . This way webapps would not be able to hack passwords easily.

Regards,
Vlad

> -----Original Message-----
> From: Robert Harper [mailto:robert@iat-cti.com]
> Sent: 02 November 2006 18:25
> To: 'Tomcat Users List'
> Subject: RE: log question and lambda probe
> 
> I think you can specify a full path but Tomcat must have full access
to
> the
> other directory.
>   <Logger className="org.apache.catalina.logger.FileLogger" debug="9"
> directory="[your_path]/logs" prefix="localhost_log." suffix=".txt"
> timestamp="true" verbosity="4" />
> Set in the [Catalina_home]/conf/server.xml file.
> 
> 
> 
> As for hiding the tomcat-users data from being browsed, you will have
to
> turn off directory listings
> 
>   <init-param>
>    <param-name>listings</param-name>
>    <param-value>false</param-value>
>   </init-param>
> 
> For the default servlet. Not a big deal. Tomcat can still read it to
load
> the users but will not allow browsing under the
http(s)://[tomcat_host]
> URL.
> This is set in the [Catalina_home]/conf/web.xml file.
> 
> 
> 
> Robert S. Harper
> Information Access Technology, Inc.
> -----Original Message-----
> From: mast [mailto:master@tyranz.com]
> Sent: Thursday, November 02, 2006 10:33 AM
> To: Tomcat Users List
> Subject: Re: log question and lambda probe
> 
> Nobody has ideas ?
> 
>   ----- Original Message -----
>   From: mast
>   To: Tomcat Users List
>   Sent: Wednesday, November 01, 2006 12:27 AM
>   Subject: log question and lambda probe
> 
> 
>   Hi again, i have download the lambda probe to see how it was and i
have
> notice some things with log,
>   in their context.xml file there is :
>    <Logger className="org.apache.catalina.logger.FileLogger"
>                   prefix="probe."
>                   suffix=".out"
>                   timestamp="true"/>
> 
>   well that work wells but put the log under the logs directory of
tomcat
> i
> wonder if there is no way to put it elsewhere ? (like in the same
webapps
> that want the log)
>   i have try with :
>   <Logger className="org.apache.catalina.logger.FileLogger"
>                   directory="/usr/local/tomcat5/webapps/users3/ROOT/"
>                   prefix="probe."
>                   suffix=".out"
>                   timestamp="true"/>
> 
>   without any succes, is it possible or must i forget this ?
> 
>   one other problem i have with this application (the same problem
that i
> talk two days ago about permission) is that we need to put the
> user/password
> under the tomcat-users.xml file, and like Chuck said this file must be
> readable by tomcat user.
> 
>   so the server that will serve the probe application (or any other of
my
> context) is user tomcat and so any jsp script that a user that has an
> access
> to the server can read the tomcat-users.xml file because that s the
same
> owner (don t know if i explain well)
> 
>   i have heard about the security manager maybe it s the solution (but
not
> sure because when i run in security mode many webapps doesn't work
> anymore)
> 
>   well if someone has an advice about that
>   that question may seem silly but i am concerned with security and
doesn
> t
> find any answer that i could really use until now.
>   Thx
> 
> 
> 
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org

--------------------------------------------------------------------------------------------------------------------------------------------
The information contained in this email message may be confidential. If you are not the intended
recipient, any use, interference with, disclosure or copying of this material is unauthorised
and prohibited. Although this message and any attachments are believed to be free of viruses,
no responsibility is accepted by Informa for any loss or damage arising in any way from receipt
or use thereof.  Messages to and from the company are monitored for operational reasons and
in accordance with lawful business practices. 
If you have received this message in error, please notify us by return and delete the message
and any attachments.  Further enquiries/returns can be sent to postmaster@informa.com

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message