You dont have to become group member or owner to "read". For secure reason, normally we create a group, only owner can write and execute for example, and only group member can read. If your reading access related to JDK or tomcat classpath etc. You have to create secure policy file and start tomcat in secure mode.
Wish it helps Li On 12/7/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
Dear Martin, Indeed, they are. Thank you Ekkehard -----Original Message----- From: Martin Gainty [mailto:[EMAIL PROTECTED] Sent: Thursday, December 07, 2006 3:21 PM To: Tomcat Users List Subject: Re: Tomcat 5.0.28 installed under LINUX - access to file system limited to tomcat user Ekkehard A quick clarification please..Are any of these directories sym-linked? M- --------------------------------------------------------------------------- This e-mail message (including attachments, if any) is intended for the use of the individual or entity to which it is addressed and may contain information that is privileged, proprietary , confidential and exempt from disclosure. If you are not the intended recipient, you are notified that any dissemination, distribution or copying of this communication is strictly prohibited. --------------------------------------------------------------------------- Le présent message électronique (y compris les pièces qui y sont annexées, le cas échéant) s'adresse au destinataire indiqué et peut contenir des renseignements dentiel. Si vous n'êtes pas le destinataire de ce document, nous vous signalons qu'il est strictement interdit de le diffuser, de le distribuer ou de le reproduire. ----- Original Message ----- From: <[EMAIL PROTECTED]> To: <users@tomcat.apache.org> Sent: Thursday, December 07, 2006 7:47 AM Subject: Tomcat 5.0.28 installed under LINUX - access to file system limited to tomcat user > Hello > > I have an installation of tomcat version 5.0.28 where tomcat runs under a user tomact on LINUX. > My jsp application should read files from a directory. Read access to directory and files is limited to group "sdf" and file owner "asd": > drwxrws--- 17 asd sdf data that contains the file > -rwxrwx--- asd sdf input.txt > The directory is owned by a different user than tomcat. However, user tomcat is a member of the group ("sdf" in the example) that owns the target directory. At LINUX level as user tomcat I have access to the file. For security reasons I cannot give read access to everybody. > With this set up of user rights my application cannot access the file. If I create a group "tomcat" and if I change owner and/or group of the directory and file to tomcat then the read access works. > Is this an error in my jsp application or could I configure tomcat that it would also read files without being the owner of files or the group? > > Thank you very much for your help > > Ekkehard >
-- When we invent time, we invent death.