After emerging tomcat-5.0.28-r4, the directory /var/lib/tomcat-5/default/webapps is owned by root:root with permissions rwxr-xr-x (not writable by tomcat). This directory must be writable by tomcat in order to deploy WAR files from the manager webapp. I suggest making the owner tomcat:tomcat with permissions rwxr-x--- ('other' has no permissions to avoid unauthorized users from reverse engineering webapps to gain sensitive information). Reproducible: Always Steps to Reproduce: 1. Add 'www-servers/tomcat-5.0.28-r4' to /etc/portage/package.keywords 2. emerge -av tomcat 3. ls -l /var/lib/portage/tomcat-5/default Actual Results: total 0 lrwxrwxrwx 1 root root 21 Jul 18 18:51 conf -> /etc/tomcat-5/default lrwxrwxrwx 1 root root 25 Jul 18 18:51 logs -> /var/log/tomcat-5/default lrwxrwxrwx 1 root root 25 Jul 18 18:51 temp -> /var/tmp/tomcat-5/default drwxr-xr-x 2 root root 18 Jul 18 18:51 webapps lrwxrwxrwx 1 root root 25 Jul 18 18:51 work -> /var/run/tomcat-5/default Expected Results: total 0 lrwxrwxrwx 1 root root 21 Jul 18 18:51 conf -> /etc/tomcat-5/default lrwxrwxrwx 1 root root 25 Jul 18 18:51 logs -> /var/log/tomcat-5/default lrwxrwxrwx 1 root root 25 Jul 18 18:51 temp -> /var/tmp/tomcat-5/default drwxr-x--- 2 tomcat tomcat 18 Jul 18 18:51 webapps lrwxrwxrwx 1 root root 25 Jul 18 18:51 work -> /var/run/tomcat-5/default
Now fixed in the -r6 ebuild. When upgrading you need to manually change the permissions because I don't want to force the change if someone has a local setup. Thanks for reporting.
