When installing Tomcat 4.1.24-r1 (new install) the file /etc/conf.d/tomcat is created. However, it is created with the following permissions: -rwxr-x--- 1 root root 2734 2003-06-01 10:17 tomcat* This causes problems when starting Tomcat: #> /etc/init.d/tomcat start * Starting Tomcat... /opt/tomcat/bin/catalina.sh: line 63: /etc/conf.d/tomcat: Permission den [ !! ] The trivial fix to this problem is the following: #> chmod a+rx /etc/conf.d/tomcat Leaving the file with these permissions: -rwxr-xr-x 1 root root 2734 2003-06-01 10:17 tomcat* I do not see this as a security concern, but maybe I'm missing something. Please review. Reproducible: Always Steps to Reproduce:
Same here... If it's a security issue, why not use the tomcat user as owner of the file.
The same comments apply to /opt/tomcat/logs. Bug 24371 is related.
I noticed the same permissions problem with the file /etc/conf.d/tomcat Since it is often useful and sometimes necessary to have several Tomcat instances running it might be a good idea to 'chgrp tomcat /etc/conf.d/tomcat' then root can add users who will be running a tomcat instance to the tomcat group. However, I'm not sure this file would even be referenced if a normal user started tomcat via '/opt/tomcat/bin/cataline.sh start/stop/run' but I think the ebuild should chgrp the file in any case.
Moving this again to java@gentoo.org, so everyone out there can help.
Fixed in 4.1.29 and 5.0.18
