Ha ha... if you get it working, I'll buy it from you ;)
- Original Message -
From: "Pid" <[EMAIL PROTECTED]>
To: "Tomcat Users List"
Sent: Saturday, May 19, 2007 11:00 AM
Subject: Re: UserDatabase & security
I'm trying to write a regex that w
I'm trying to write a regex that will turn Mr Kewl's posts into
something readable, if anyone would care to help. If there's sufficient
interest I'll start a project on SourceForge to turn it into a plugin
for Outlook, Thunderbird etc.
p
Johnny Kewl wrote:
Hi Jerome...
Dont think its poss
Jerome Benezech wrote:
> Thanks for the info, that would do great.
> Any link on documentation to configure tomcat that way
> ?
Would it have killed you to spend 30 seconds looking for this yourself?
http://tomcat.apache.org/tomcat-6.0-doc/security-manager-howto.html
Mark
--
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jacob,
Jacob Rhoden wrote:
> Jerome Benezech wrote:
>> In this case, which user would be authenticated in
>> LDAP ? If th user connecting to LDAP is 'tomcat', the
>> issue remains no ?
>>
> Not quite. You reconfigure tomcat to use LDAP to lookup pa
Thanks for the info, that would do great.
Any link on documentation to configure tomcat that way
?
--- Mark Thomas <[EMAIL PROTECTED]> wrote:
> Jerome Benezech wrote:
> > Is there a way to ensure that only the root user
> can
> > read this file ?
>
> Not quite root only but it will meet your
> r
Jerome Benezech wrote:
> Is there a way to ensure that only the root user can
> read this file ?
Not quite root only but it will meet your requirement...
Run Tomcat under a security manager. That way, webapps don't have
access to files outside the docBase without explicit permissions being
define
Hi Jerome...
Dont think its possible with tomcat doesnt have an encrypted password
store.
But I think you right... its part of a more general issue... namely that the
server as a user, is a power user, and has to be able to get at resources on
the machine... so you got this power user guard
Right, stupid comment Will see if we can do with
LDAP or maybe just putting digested passwords would be
ok.
Thanks for your help
Jerome
--- Jacob Rhoden <[EMAIL PROTECTED]> wrote:
> Jerome Benezech wrote:
> >> As far as I am aware you cannot resolve this
> problem
> >> except by switching
>
Jerome Benezech wrote:
As far as I am aware you cannot resolve this problem
except by switching
to LDAP for your authentication. (Although I would
be happy to be
corrected!)
In this case, which user would be authenticated in
LDAP ? If th user connecting to LDAP is 'tomcat', the
issue rem
Jerome Benezech wrote:
> I have a question regarding Tomcat server UserDatabase
> on Linux.
> When choosing a MemoryUserDatabase, tomcat users and
> passwords are declared in a tomcat-users.xml file. The
> tomcat user running the server must have read
> permission on this file.
> At the same time
> As far as I am aware you cannot resolve this problem
> except by switching
> to LDAP for your authentication. (Although I would
> be happy to be
> corrected!)
In this case, which user would be authenticated in
LDAP ? If th user connecting to LDAP is 'tomcat', the
issue remains no ?
>
> Which
As far as I am aware you cannot resolve this problem except by switching
to LDAP for your authentication. (Although I would be happy to be
corrected!)
For any larger scale hosting, LDAP provides a more secure solution.
(However it does add an extra point of failure). Any hosting solution
wher
12 matches
Mail list logo
