Each time tomcat is restarted the file tomcat-users.xml is rewritten. It is horrible since my umask being 0022 the file which stores passwords become world readable.
Obviously this file has to be read my the server but I do not see any valuable reason to write it back opening a serious security hole. -- ___________________________________________________________________ Jean-Paul Le F�vre * Mail : [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
