Bug 64270

Summary: daemon.sh doesn't pass the default umask to JSVC
Product: Tomcat 8 Reporter: John Kang <upgradejkang>
Component: PackagingAssignee: Tomcat Developers Mailing List <dev>
Severity: normal    
Priority: P2    
Version: 8.5.53   
Target Milestone: ----   
Hardware: PC   
OS: Mac OS X 10.1   

Description John Kang 2020-03-26 15:40:35 UTC
hi there,

when I refered to the tomcat document It says that "Tomcat runs with a default umask of 0027 to maintain these permissions for files created while Tomcat is running (e.g. log files, expanded WARs, etc.)"

- https://tomcat.apache.org/tomcat-8.5-doc/security-howto.html
- 29) Security Considerations -> Non Tomcat settings

I can also confirm that there is a default umask value in bin/catalina.sh, but daemon.sh does not pass the default umask to JSVC.

I raised this issue as following and they said this should be fixed by Tomcat.
- https://issues.apache.org/jira/browse/DAEMON-417.

I'm not sure if I can make a issue here.

Comment 1 Mark Thomas 2020-03-30 14:51:51 UTC
Fixed in:
- master for 10.0.0-M4 onwards
- 9.0.x for 9.0.34 onwards
- 8.5.x for 8.5.54 onwards
- 7.0.x for 7.0.104 onwards