Thanks for pointing out the potential tomcat problem - I run tomcat as
well and hadn't thought of a possible root compromise. (I'm least
surprised about the never-ending security vigilance - just keeping on
top of security is at least one full-time job, which nobody ever wants
to pay for until something goes wrong and then they wander 'how come we
didn't foresee this?' - sheesh!) :-P I just run tripwire regularly and
that gives me some peace of mind.
Anyway, I'm gonna use Nutch/Lucene to index all the lilypond
documentation AND mail archives so people can search everything from one
location; Nutch runs under tomcat so I'll look into the root issue.
Cheers,
Mike
PS Incidentally, great job on the lilypond jail mode - it was pretty
straightforward getting it running once I installed Olivier Sessink's
jailkit. (Well, as staightforward as these things can be!)
In the meantime I solved some security problem related to the fact
that now tomcat doesn't run as root. You could be surprised to know
that most of the time I spend on LSR is to make it work under the
ever- changing Linux security policies :(.
_______________________________________________
lilypond-user mailing list
lilypond-user@gnu.org
http://lists.gnu.org/mailman/listinfo/lilypond-user
