Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 56821 invoked from network); 26 Jan 2007 19:25:00 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 26 Jan 2007 19:25:00 -0000 Received: (qmail 18588 invoked by uid 500); 26 Jan 2007 19:24:55 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 18319 invoked by uid 500); 26 Jan 2007 19:24:54 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 18308 invoked by uid 99); 26 Jan 2007 19:24:54 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 26 Jan 2007 11:24:54 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: neutral (herse.apache.org: local policy) Received: from [63.240.77.82] (HELO sccrmhc12.comcast.net) (63.240.77.82) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 26 Jan 2007 11:24:44 -0800 Received: from [192.168.1.47] (c-69-143-26-154.hsd1.va.comcast.net[69.143.26.154]) by comcast.net (sccrmhc12) with ESMTP id <200701261924230120026otbe>; Fri, 26 Jan 2007 19:24:23 +0000 Message-ID: <45BA5561.3070607@christopherschultz.net> Date: Fri, 26 Jan 2007 14:24:17 -0500 From: Christopher Schultz User-Agent: Thunderbird 2.0b2 (Windows/20070116) MIME-Version: 1.0 To: Tomcat Users List Subject: Re: Tomcat as root and security issues References: <797740350701260325g385deefod789320335a51048@mail.gmail.com> <45B9E6AC.8010303@ceti.pl> In-Reply-To: <45B9E6AC.8010303@ceti.pl> X-Enigmail-Version: 0.94.1.2.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Gaurav, Also look at "jsvc", which will allow you to run Tomcat as non-root and still use port 80. - -chris Mikolaj Rydzewski wrote: > Gaurav Kushwaha wrote: >> I read somewhere that if I want to run Tomcat standalone on port 80, I >> will >> have to run it as root and that this is potentially unsafe. Is there >> any way >> for me to run it on port 80 without having to give the root privileges to >> the process. > Use apache (+ mod_jk or mod_proxy_ajp) as a frontend. > Use squid reverse proxy as a frontend. > Use port forwarding. > Other soloutions are possible also. > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFulVh9CaO5/Lv0PARAif9AJwLQixlU9wBiYPA59fLveUgeTOAiQCeOBSY qOuOSTztBD+n4NwSguagw9M= =m4mj -----END PGP SIGNATURE----- --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org