Mohan,
On 8/5/21 23:51, Mohan T wrote:
Dear All,
We are using Tomcat 8.5 on Suse LINUX.
We enabled JAvA security in tomcat and invoking the Catalina.sh. We are facing
some permission issues in the environment.
We could see the below error messages.
access: access allowed ("java.util.logging.LoggingPermission" "control")
java.lang.Exception: Stack trace
at java.lang.Thread.dumpStack(Thread.java:1336)
at
java.security.AccessControlContext.checkPermission(AccessControlContext.java:419)
at
java.security.AccessController.checkPermission(AccessController.java:884)
at java.lang.SecurityManager.checkPermission(SecurityManager.java:549)
at java.util.logging.LogManager.checkPermission(LogManager.java:1586)
at java.util.logging.Logger.checkPermission(Logger.java:422)
at java.util.logging.Logger.removeHandler(Logger.java:1764)
at
org.apache.juli.ClassLoaderLogManager.resetLoggers(ClassLoaderLogManager.java:393)
at
org.apache.juli.ClassLoaderLogManager.shutdown(ClassLoaderLogManager.java:377)
at
org.apache.juli.ClassLoaderLogManager$Cleaner.run(ClassLoaderLogManager.java:81)
policy: getPermissions:
PD CodeSource:
(file:/home/ilas/tomcat8.5_tech/apache-tomcat-8.5.35/bin/tomcat-juli.jar <no
signer certificates>)
PD ClassLoader: sun.misc.Launcher$AppClassLoader@3d4eac69
PD Principals: <no principals>
policy: evaluate codesources:
Policy CodeSource: (file:/usr/java/jdk1.8.0_162/jre/lib/- <no signer
certificates>)
Active CodeSource:
(file:/home/ilas/tomcat8.5_tech/apache-tomcat-8.5.35/bin/tomcat-juli.jar <no
signer certificates>)
If you require signed JAR files, please use a more recent version of
Tomcat 8.5.x. I'm not sure when signing was introduced, but 8.5.35
nearly 3 years ago and definitely should be upgraded if you are
sensitive to security issues.
-chris
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org