[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-developers] Security question

Subject: [cobalt-developers] Security question
From: "Adam Fleet" <afleet@xxxxxxxxxxxxxxx>
Date: Wed Nov 5 22:37:01 2003
List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>

Hi everyone,

I've been reading up on java security policies, but am still scratching my
head. Perhaps I'm missing something obvious, that someone can point out, or
provide a few tips on:

On a RAQ 550, my $TOMCAT_HOME/conf/tomcat.policy file has the following
lines in it:

grant {
    permission java.util.FilePermission
"/usr/java/jakarta-tomcat-3.2.3/webapps/ROOT/WEB-INF/lib/assist.jar",
"read";
};

where $TOMCAT_HOME is /usr/java/jakarta-tomcat-3.2.3

Yet when I try to run:

[root conf]# /etc/init.d/tomcat.init restart

The eventual error message is:

Starting with a SecurityManager
[root conf]# Starting tomcat. Check logs/tomcat.log for error messages
java.security.AccessControlException: access denied (java.io.FilePermission
/usr/java/jakarta-tomcat-3.2.3/webapps/ROOT/WEB-INF/lib/assist.jar read)
        at
java.security.AccessControlContext.checkPermission(AccessControlContext.java
:272)
        at
java.security.AccessController.checkPermission(AccessController.java:399)
        at
java.lang.SecurityManager.checkPermission(SecurityManager.java:545)
        at java.lang.SecurityManager.checkRead(SecurityManager.java:890)
        at java.io.File.isDirectory(File.java:564)
        at
org.apache.tomcat.loader.AdaptiveClassLoader.loadClass(AdaptiveClassLoader.j
ava:481)
        at java.lang.ClassLoader.loadClass(ClassLoader.java:253)
        at java.lang.ClassLoader.loadClassInternal(ClassLoader.java:313)
        at paymentengine.system.PaymentStartup.init(PaymentStartup.java:17)
        at
org.apache.tomcat.core.ServletWrapper.doInit(ServletWrapper.java:317)
        at org.apache.tomcat.core.Handler.init(Handler.java:215)
        at
org.apache.tomcat.core.ServletWrapper.init(ServletWrapper.java:296)
        at
org.apache.tomcat.context.LoadOnStartupInterceptor.contextInit(LoadOnStartup
Interceptor.java:130)
        at
org.apache.tomcat.core.ContextManager.initContext(ContextManager.java:491)
        at
org.apache.tomcat.core.ContextManager.init(ContextManager.java:453)
        at org.apache.tomcat.startup.Tomcat.execute(Tomcat.java:195)
        at org.apache.tomcat.startup.Tomcat.main(Tomcat.java:235)


Can anyone shed some light on this?  Am I editing the wrong policy file?
Much obliged...
Cheers,

Adam Fleet.
Manager, Technical Support and Infrastructure
-------------------------------------------------------------------------
Digerati Assist
Australian  Customers: phone 1300 727271 - email assist@xxxxxxxxxxxxxxx
New Zealand Customers: phone 0800 484438 - email nzassist@xxxxxxxxxxxxxxx
-------------------------------------------------------------------------
Digerati P/L - 12 Strathalbyn St - East Kew 3102 - phone +61 3 9859 5800
-------------------------------------------------------------------------

Prev by Date: RE: [cobalt-developers] Java on RAQ550
Next by Date: [cobalt-developers] PhP system class files on RaQ550
Previous by thread: [cobalt-developers] Installing RH8 on Cobalt Raq3
Next by thread: [cobalt-developers] PhP system class files on RaQ550

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index