Path: csiph.com!news.mixmin.net!aioe.org!bofh.it!news.nic.it!robomod From: Emmanuel Bourg Newsgroups: linux.debian.maint.java Subject: Re: Tomcat 8 security update Date: Mon, 30 May 2016 08:50:02 +0200 Message-ID: References: X-Mailbox-Line: From debian-java-request@lists.debian.org Mon May 30 06:43:12 2016 Old-Return-Path: X-Amavis-Spam-Status: No, score=-7.5 tagged_above=-10000 required=5.3 tests=[BAYES_00=-2, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.198, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, LDO_WHITELIST=-5, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no X-Policyd-Weight: using cached result; rate: -7 Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:subject:to:references:cc:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding; bh=pYpZkFRNnmytKsTbLDlEaUYAFiN5BxS2BhT3hcvPPdo=; b=Jr9+1wO9fykHfn0/pM+VfowDf40UzPVWFnGpKUH+6ThxiMp/4W0F0GFF9gfdVoVk3A CrMzaXjMrLftZ0iURC6/9+Tdeuy2RpFB9wxG2SMp+Lu2kZ2y3JdeS5ZqsSkXqQSLDlkx kU301T0SOR1VJKBaLiJ48W6ERYAWFZWa0FIRBx81kali6Jcp68zs+KivaGyd9PLKr8vo NUaT+mh1uXwEtaKrsgpodntpHTX1cWkiPi9gLbAftqJMmHm5WIUB1Vhc8btqWcL7HU/D azdx+tLIPva/F3VqRDxqXNpE6kQItwzqu7aZL0ZXJea8J3C7QZYRQ4Zx3ahdyT0KR+ax u7gw== X-Google-Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:sender:subject:to:references:cc:from:message-id :date:user-agent:mime-version:in-reply-to:content-transfer-encoding; bh=pYpZkFRNnmytKsTbLDlEaUYAFiN5BxS2BhT3hcvPPdo=; b=ZLsBBxbsFwh98Ij7MGwJUS22TWtpAwE9VpCx8kPFhLHzMljafPXPm4/I9mUnvaexzA JCBQCY7kvVVNIc8NxjkeIznYuV8W+lAeR153X/xrpu4+Sn3HWXcSodG8U5T2QTCD7HUd 2kHTyek0O8ggZmugv8evTQi6CzNEpzTJT2rr5JkFPpJ84NH6KI+kwUlGoV/sEMNFCrN+ wYF13+rjH60ICZcgWUPIv9+E4OHp6YEsYwPT7h/I3BB539oWqVeMYn6wwaoZSIwvPdv1 VTdzKQ7IJphewHMTDjpgZCqFX6kyKpbTF3BTsZ9lIOZZsZ23n1DDqgCG4hjbxaQLgIuF xBgA== X-Gm-Message-State: ALyK8tKvmKiKgColCXfbAuBcjIIb1i0ioaGpBN8ajhv0JzLdYBC++1cQxIm+A8KVVzPSnw== X-Received: by 10.194.112.6 with SMTP id im6mr28794285wjb.48.1464590574727; Sun, 29 May 2016 23:42:54 -0700 (PDT) Sender: robomod@news.nic.it User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.1.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Mailing-List: archive/latest/19472 List-ID: List-URL: List-Archive: https://lists.debian.org/msgid-search/64ff92db-940a-0ef2-51e8-61afd8b4c29e@apache.org Approved: robomod@news.nic.it Lines: 12 Organization: linux.* mail to news gateway X-Original-Cc: "debian-java@lists.debian.org" X-Original-Date: Mon, 30 May 2016 08:42:52 +0200 X-Original-Message-ID: <64ff92db-940a-0ef2-51e8-61afd8b4c29e@apache.org> X-Original-References: <0ff46564-4292-c688-61fe-aa885f69c70d@debian.org> <5ebe4f0d-65b7-9470-bce8-25c50ef76fdf@apache.org> <3ae472aa-29f8-bf20-205f-49f678c399c7@debian.org> X-Original-Sender: Emmanuel Bourg Xref: csiph.com linux.debian.maint.java:9144 Le 30/05/2016 à 01:24, Markus Koschany a écrit : > OK, then let's update the third line to > > chown -Rh $TOMCAT8_USER:$TOMCAT8_GROUP /etc/tomcat8/Catalina > /var/lib/tomcat8/webapps /var/lib/tomcat8/lib I don't feel comfortable fixing #825786 directly in a stable security update. It would be safer to test it in unstable/testing first, we may have missed some important use cases. Emmanuel Bourg