On 11/5/2014 1:34 PM, Igal @ getRailo.org wrote:
hi,
what are the security best practices for running Tomcat as a Windows
Service?
is the local system account safe or am I better off creating a new user
and giving it write permissions only to the Tomcat runtime folders and
read permissions to t
>In my previous employment, we did that. Create a local user account and
set permissions to the Tomcat installation directory and optional
CATALINA_BASE (if you separated them).
I agree with this (done hundreds of times), and you can set rights
with xcacls. However this reminds us that usually th
>In my previous employment, we did that. Create a local user account and
set permissions to the Tomcat installation directory and optional
CATALINA_BASE (if you separated them).
I agree with this (done hundreds of times), and you can set rights
with xcacls. However this reminds us that usually th
On Wed, Nov 5, 2014 at 1:34 PM, Igal @ getRailo.org
wrote:
> hi,
>
> what are the security best practices for running Tomcat as a Windows
> Service?
>
> is the local system account safe
Define safe. LocalSystem has too many privs that a Tomcat service account
doesn't need in my opinion.
or am
hi,
what are the security best practices for running Tomcat as a Windows
Service?
is the local system account safe or am I better off creating a new user
and giving it write permissions only to the Tomcat runtime folders and
read permissions to the web contents folder?
TIA
--
Igal Sapir
Railo
