[prev in list] [next in list] [prev in thread] [next in thread]
List: tomcat-user
Subject: Re: Help Needed
From: Christopher Schultz <chris () christopherschultz ! net>
Date: 2021-08-06 4:18:37
Message-ID: c33e75c3-9596-3cd8-c255-12c7b5d20d2d () christopherschultz ! net
[Download RAW message or body]
Mohan,
On 8/5/21 23:51, Mohan T wrote:
> Dear All,
>
> We are using Tomcat 8.5 on Suse LINUX.
>
> We enabled JAvA security in tomcat and invoking the Catalina.sh. We are facing \
> some permission issues in the environment.
> We could see the below error messages.
>
> access: access allowed ("java.util.logging.LoggingPermission" "control")
> java.lang.Exception: Stack trace
> at java.lang.Thread.dumpStack(Thread.java:1336)
> at java.security.AccessControlContext.checkPermission(AccessControlContext.java:419)
> at java.security.AccessController.checkPermission(AccessController.java:884)
> at java.lang.SecurityManager.checkPermission(SecurityManager.java:549)
> at java.util.logging.LogManager.checkPermission(LogManager.java:1586)
> at java.util.logging.Logger.checkPermission(Logger.java:422)
> at java.util.logging.Logger.removeHandler(Logger.java:1764)
> at org.apache.juli.ClassLoaderLogManager.resetLoggers(ClassLoaderLogManager.java:393)
> at org.apache.juli.ClassLoaderLogManager.shutdown(ClassLoaderLogManager.java:377)
> at org.apache.juli.ClassLoaderLogManager$Cleaner.run(ClassLoaderLogManager.java:81)
> policy: getPermissions:
> PD CodeSource: (file:/home/ilas/tomcat8.5_tech/apache-tomcat-8.5.35/bin/tomcat-juli.jar \
> <no signer certificates>) PD ClassLoader: sun.misc.Launcher$AppClassLoader@3d4eac69
> PD Principals: <no principals>
> policy: evaluate codesources:
> Policy CodeSource: (file:/usr/java/jdk1.8.0_162/jre/lib/- <no signer certificates>)
> Active CodeSource: \
> (file:/home/ilas/tomcat8.5_tech/apache-tomcat-8.5.35/bin/tomcat-juli.jar <no signer \
> certificates>)
If you require signed JAR files, please use a more recent version of
Tomcat 8.5.x. I'm not sure when signing was introduced, but 8.5.35
nearly 3 years ago and definitely should be upgraded if you are
sensitive to security issues.
-chris
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic