On Sun, Sep 19, 2004 at 06:19:57PM -0400, Fred Stluka wrote:
: I've just searched the archives and it seems that this question
: comes up every few months at least. The behavior of rewriting
: tomcat-users.xml and changing its permissions to match the
: Tomcat umask surprises enough people that it
I've just searched the archives and it seems that this question
comes up every few months at least. The behavior of rewriting
tomcat-users.xml and changing its permissions to match the
Tomcat umask surprises enough people that it seems worth
changing if possible. I put a lot of faith in "the prin
Hi
> Each time tomcat is restarted the file tomcat-users.xml is rewritten. It
is horrible since my umask being 0022 the file which stores passwords become
world readable. Obviously this file has to be read my the server but I do
not see any valuable reason to write it back opening a serious securi