[Bug 594989] [NEW] Lucid Lynx authbind defaults too restrictive
Tom
tdm27 at cam.ac.uk
Wed Jun 16 09:42:45 BST 2010
Public bug reported:
Binary package hint: tomcat6
Description: Ubuntu 10.04 LTS
Release: 10.04
package: tomcat6 version 6.0.24-2ubuntu1
Bug:
To use Tomcat6 on a port below 1023, one has to use authbind. However,
/etc/authbind/byuid/106 (the default uid for the tomcat6 user is 106;
could be any other number) contains the following:
0.0.0.0/32:1,1023
Which means it's possible to bind to ALL interfaces, but rules out
binding to specific addresses (using Tomcat's <Connector address=...>
mechanism). This seems to be incorrect; surely the latter is inherently
part of the former and should also be allowed.
I would suggest changing it to
0.0.0.0/0:1,1023
Or, at the very least, to amend the comments in /etc/defaults/tomcat6 to
indicate that authbind needs to be specifically told if only specific
addresses need to be bound to.
Otherwise, one can spend a very long time trying to find out why one
gets "Protocol handler start failed: java.net.SocketException: No such
file or directory" errors.
** Affects: tomcat6 (Ubuntu)
Importance: Undecided
Status: New
** Tags: authbind tomcat6
--
Lucid Lynx authbind defaults too restrictive
https://bugs.launchpad.net/bugs/594989
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat6 in ubuntu.
More information about the Ubuntu-server-bugs
mailing list