Menu
▾
▴
Re: [Wrapper-user] Using JSW To Run a Java Server on a Privileged Port?
|
From: Leif M. <le...@ta...> - 2006-04-10 02:04:47
|
Jason,
This is discussed in this feature request.
http://sourceforge.net/tracker/index.php?func=detail&aid=490806&group_id=39428&atid=425190
If there is anything that I have overlooked, feel free to add to
this issue. It is
something I would like to make available, I am just not sure how.
The problem is that the Tomcat loader binds to the port as root and
then changes to
another user while maintaining a reference to the port. Once the user
has been changed,
there is of course no way to go back to being root.
The Wrapper could do something like this once, but it would not be
possible to recover
from failures and launch a new JVM as that would require becoming root a
second time.
In your case, it sounds like you want to let your live users connect
directly to Tomcat.
I haven't used the newest version, but older versions were not really
designed for this.
Usually, you would have Apache running and then connect to Tomcat using
mod_jk.
This makes it possible for Tomcat to only need high ports, resolving
this problem
completely.
Cheers,
Leif
Jason Brittain wrote:
> Hi JSW developers.
>
> I couldn't find info on your web pages / docs about whether JSW implements this
> feature, so I'm guessing it doesn't -- the ability to run a Java
> program as a non-root
> user and open privileged server ports. For example, run Tomcat through JSW as
> user "tomcat" and still open web server port 80.
>
> The Apache Jakarta Commons Daemon jsvc binary that comes with Tomcat does
> this, but has fewer other features:
>
> http://jakarta.apache.org/commons/daemon/jsvc.html
>
> JSW doesn't do it as far as I can see, but has lots of nice service
> features that
> Tomcat users could make use of -- but most will want the port 80 capability.
>
> Have you considered adding this feature already? I searched this mailing list
> archive and did not see it discussed.
>
> Cheers.
>
> --
> Jason Brittain
>
|
