Bug 64270 - daemon.sh doesn't pass the default umask to JSVC
Summary: daemon.sh doesn't pass the default umask to JSVC
Status: NEW
Alias: None
Product: Tomcat 8
Classification: Unclassified
Component: Packaging (show other bugs)
Version: 8.5.53
Hardware: PC Mac OS X 10.1
: P2 normal (vote)
Target Milestone: ----
Assignee: Tomcat Developers Mailing List
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2020-03-26 15:40 UTC by John Kang
Modified: 2020-03-26 15:40 UTC (History)
0 users



Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description John Kang 2020-03-26 15:40:35 UTC
hi there,

when I refered to the tomcat document It says that "Tomcat runs with a default umask of 0027 to maintain these permissions for files created while Tomcat is running (e.g. log files, expanded WARs, etc.)"

- https://tomcat.apache.org/tomcat-8.5-doc/security-howto.html
- 29) Security Considerations -> Non Tomcat settings

I can also confirm that there is a default umask value in bin/catalina.sh, but daemon.sh does not pass the default umask to JSVC.

I raised this issue as following and they said this should be fixed by Tomcat.
- https://issues.apache.org/jira/browse/DAEMON-417.

I'm not sure if I can make a issue here.

Thanks,
John