[Bug 594989] [NEW] Lucid Lynx authbind defaults too restrictive

[Tom]

Public bug reported:

Binary package hint: tomcat6

Description:	Ubuntu 10.04 LTS
Release:	10.04
package: tomcat6 version 6.0.24-2ubuntu1

Bug:

To use Tomcat6 on a port below 1023, one has to use authbind. However,
/etc/authbind/byuid/106 (the default uid for the tomcat6 user is 106;
could be any other number) contains the following:

0.0.0.0/32:1,1023

Which means it's possible to bind to ALL interfaces, but rules out
binding to specific addresses (using Tomcat's <Connector address=...>
mechanism). This seems to be incorrect; surely the latter is inherently
part of the former and should also be allowed.

I would suggest changing it to

0.0.0.0/0:1,1023

Or, at the very least, to amend the comments in /etc/defaults/tomcat6 to
indicate that authbind needs to be specifically told if only specific
addresses need to be bound to.

Otherwise, one can spend a very long time trying to find out why one
gets "Protocol handler start failed: java.net.SocketException: No such
file or directory" errors.

** Affects: tomcat6 (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: authbind tomcat6

-- 
Lucid Lynx authbind defaults too restrictive
https://bugs.launchpad.net/bugs/594989
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat6 in ubuntu.