> -Original Message-
> From: Christopher Cain [mailto:[EMAIL PROTECTED]]
> Sent: Friday, August 17, 2001 2:32 PM
> To: [EMAIL PROTECTED]
> Subject: Re: Tomcat before Apache
>
>
>
>
> "Pier P. Fumagalli" wrote:
> >
> > Christoph
Quoting Martin van den Bemt <[EMAIL PROTECTED]>:
> point taken about the root thing..
> I took back my words on that it safe to run as root (as quoted in my
> mail to Pier).
Cool. As I said, I had't really read the thread. I wasn't singling you out, I
just wanted to make a definitive comment fo
Quoting Dmitri Colebatch <[EMAIL PROTECTED]>:
> Its a function thats defined in /etc/rc.d/init.d/functions on a redhat
> (and mandrake) box.
>
> cheesr
> dim
Ah ... cool. See, I still learn something new every day.
Cheesr, buddy ;-)
- Christopher
TECTED]]
> Sent: Saturday, August 18, 2001 9:13 AM
> To: [EMAIL PROTECTED]
> Subject: Re: Tomcat before Apache
>
>
> Quoting "Pier P. Fumagalli" <[EMAIL PROTECTED]>:
>
> > I keep my stance, if I see someone saying "running (put your favourite
>
Quoting "Pier P. Fumagalli" <[EMAIL PROTECTED]>:
> I keep my stance, if I see someone saying "running (put your favourite
> service here) as root is safe", as you did, I'll flame him. Think TWO
> steps ahead, ALWAYS.
>
> Pier (security conscious)
If I may ...
First of all, I have not read
Martin van den Bemt at [EMAIL PROTECTED] wrote:
> Pier,
>
> I won't make commercials anymore for running as root, just to keep you
> happy..
Just to make _me_ happy? Probably you don't realize what you are saying when
you give hints on running something as root.
> Maybe adding some extra info
Pier,
I won't make commercials anymore for running as root, just to keep you
happy..
Maybe adding some extra info to the mod_jk.html howto about accesability of
the 8007 and 8009 ports if you don't change the defaults (you have to
specifically tell to only accept requests from address 127.0.0.1.
On Fri, 17 Aug 2001, Pier P. Fumagalli wrote:
> Christopher Cain at [EMAIL PROTECTED] wrote:
> >
> >> This is I believe Bergstein's daemontools?
> >
> > To be honest, I'm not sure. It's how alot of the standard init.d scripts
> > are coded in Linux, so that's how I've also done mine. Whatever i
Christopher Cain at [EMAIL PROTECTED] wrote:
>
>> This is I believe Bergstein's daemontools?
>
> To be honest, I'm not sure. It's how alot of the standard init.d scripts
> are coded in Linux, so that's how I've also done mine. Whatever it is,
> it's installed by default on every Linux distro I'v
"Pier P. Fumagalli" wrote:
>
> Christopher Cain at [EMAIL PROTECTED] wrote:
> >
> >> I'm attaching a little C script that degradates the process to a specified
> >> user before execuing it. To compile do "gcc -O2 safexec.c -o safexec" and to
> >> run, (for example catalina) do:
> >>
> >> safexe
Christopher Cain at [EMAIL PROTECTED] wrote:
>
>> I'm attaching a little C script that degradates the process to a specified
>> user before execuing it. To compile do "gcc -O2 safexec.c -o safexec" and to
>> run, (for example catalina) do:
>>
>> safexec username $CATALINA_HOME/bin/catalina.sh sta
"Pier P. Fumagalli" wrote:
>
> FYI... The next one I see on any mailing list suggesting to start tomcat
> (any version) from the RC files without changing user id will understand
> what it means to be flamed... :-/
Yep, that's definitely a bad thing.
[snip]
> I'm attaching a little C script
ftware Foundation
Date: Fri, 17 Aug 2001 17:56:38 +0100
To: <[EMAIL PROTECTED]>
Subject: Re: Tomcat before Apache
Guys. If you wanted to scare the hell out of me, you succeeded... ARE WE
GOING TO SUGGEST TO OUR USERS TO RUN TOMCAT AS ROOT? ARE YOU ALL NUTS?
Ok, it's good code, but I wouldn&#x
13 matches
Mail list logo
