[prev in list] [next in list] [prev in thread] [next in thread] 

List:       tomcat-user
Subject:    Re: Help Needed
From:       Christopher Schultz <chris () christopherschultz ! net>
Date:       2021-08-06 4:18:37
Message-ID: c33e75c3-9596-3cd8-c255-12c7b5d20d2d () christopherschultz ! net
[Download RAW message or body]

Mohan,

On 8/5/21 23:51, Mohan T wrote:
> Dear All,
> 
> We are using Tomcat 8.5 on Suse LINUX.
> 
> We enabled JAvA security in  tomcat and invoking the Catalina.sh. We are facing \
> some permission issues in the environment. 
> We could see the below error messages.
> 
> access: access allowed ("java.util.logging.LoggingPermission" "control")
> java.lang.Exception: Stack trace
> at java.lang.Thread.dumpStack(Thread.java:1336)
> at java.security.AccessControlContext.checkPermission(AccessControlContext.java:419)
>  at java.security.AccessController.checkPermission(AccessController.java:884)
> at java.lang.SecurityManager.checkPermission(SecurityManager.java:549)
> at java.util.logging.LogManager.checkPermission(LogManager.java:1586)
> at java.util.logging.Logger.checkPermission(Logger.java:422)
> at java.util.logging.Logger.removeHandler(Logger.java:1764)
> at org.apache.juli.ClassLoaderLogManager.resetLoggers(ClassLoaderLogManager.java:393)
>  at org.apache.juli.ClassLoaderLogManager.shutdown(ClassLoaderLogManager.java:377)
> at org.apache.juli.ClassLoaderLogManager$Cleaner.run(ClassLoaderLogManager.java:81)
> policy: getPermissions:
> PD CodeSource: (file:/home/ilas/tomcat8.5_tech/apache-tomcat-8.5.35/bin/tomcat-juli.jar \
> <no signer certificates>) PD ClassLoader: sun.misc.Launcher$AppClassLoader@3d4eac69
> PD Principals: <no principals>
> policy: evaluate codesources:
> Policy CodeSource: (file:/usr/java/jdk1.8.0_162/jre/lib/- <no signer certificates>)
> Active CodeSource: \
> (file:/home/ilas/tomcat8.5_tech/apache-tomcat-8.5.35/bin/tomcat-juli.jar <no signer \
> certificates>)

If you require signed JAR files, please use a more recent version of 
Tomcat 8.5.x. I'm not sure when signing was introduced, but 8.5.35 
nearly 3 years ago and definitely should be upgraded if you are 
sensitive to security issues.

-chris

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


[prev in list] [next in list] [prev in thread] [next in thread]