[Bug 569118] [NEW] improper group write permission for /var/lib/tomcat6/webapps
Jamie Strandboge
jamie at ubuntu.com
Fri Apr 23 18:32:22 BST 2010
Public bug reported:
Binary package hint: tomcat6
On fresh Ubuntu 10.04 LTS install of tomcat6 6.0.24-2ubuntu1, the /var/lib/tomcat6/webapps has the following permissions:
/var/lib/tomcat6/webapps drwxrwxr-x tomcat6 adm
'adm' seems like on odd default choice of group here, since typically people in the adm are allowed to read log files. The following command demonstrates this:
$ sudo find / -group adm -ls
I suggested fix is to change the group to 'tomcat6', since the directory
already has 'r-x' for 'other'.
This is not release critical for Lucid, but should be fixed
nevertheless.
** Affects: tomcat6 (Ubuntu)
Importance: Low
Status: Confirmed
** Description changed:
Binary package hint: tomcat6
On fresh Ubuntu 10.04 LTS install of tomcat6 6.0.24-2ubuntu1, the /var/lib/tomcat6/webapps has the following permissions:
/var/lib/tomcat6/webapps drwxrwxr-x tomcat6 adm
'adm' seems like on odd default choice of group here, since typically people in the adm are allowed to read log files. The following command demonstrates this:
$ sudo find / -group adm -ls
+ I suggested fix is to change the group to 'tomcat6', since the directory
+ already has 'r-x' for 'other'.
+
This is not release critical for Lucid, but should be fixed
nevertheless.
** Changed in: tomcat6 (Ubuntu)
Status: New => Confirmed
** Changed in: tomcat6 (Ubuntu)
Importance: Undecided => Low
--
improper group write permission for /var/lib/tomcat6/webapps
https://bugs.launchpad.net/bugs/569118
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat6 in ubuntu.
More information about the Ubuntu-server-bugs
mailing list