Mohan, On 8/5/21 23:51, Mohan T wrote:
Dear All,We are using Tomcat 8.5 on Suse LINUX. We enabled JAvA security in tomcat and invoking the Catalina.sh. We are facing some permission issues in the environment. We could see the below error messages. access: access allowed ("java.util.logging.LoggingPermission" "control") java.lang.Exception: Stack trace at java.lang.Thread.dumpStack(Thread.java:1336) at java.security.AccessControlContext.checkPermission(AccessControlContext.java:419) at java.security.AccessController.checkPermission(AccessController.java:884) at java.lang.SecurityManager.checkPermission(SecurityManager.java:549) at java.util.logging.LogManager.checkPermission(LogManager.java:1586) at java.util.logging.Logger.checkPermission(Logger.java:422) at java.util.logging.Logger.removeHandler(Logger.java:1764) at org.apache.juli.ClassLoaderLogManager.resetLoggers(ClassLoaderLogManager.java:393) at org.apache.juli.ClassLoaderLogManager.shutdown(ClassLoaderLogManager.java:377) at org.apache.juli.ClassLoaderLogManager$Cleaner.run(ClassLoaderLogManager.java:81) policy: getPermissions: PD CodeSource: (file:/home/ilas/tomcat8.5_tech/apache-tomcat-8.5.35/bin/tomcat-juli.jar <no signer certificates>) PD ClassLoader: sun.misc.Launcher$AppClassLoader@3d4eac69 PD Principals: <no principals> policy: evaluate codesources: Policy CodeSource: (file:/usr/java/jdk1.8.0_162/jre/lib/- <no signer certificates>) Active CodeSource: (file:/home/ilas/tomcat8.5_tech/apache-tomcat-8.5.35/bin/tomcat-juli.jar <no signer certificates>)
If you require signed JAR files, please use a more recent version of Tomcat 8.5.x. I'm not sure when signing was introduced, but 8.5.35 nearly 3 years ago and definitely should be upgraded if you are sensitive to security issues.
-chris --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
