Bug#649046: tomcat6: openjdk + TOMCAT6_SECURITY=yes => failed start

tony mancill tmancill at debian.org
Sat Mar 17 06:25:33 UTC 2012


Hello Ed,

Thank you for the bug report and sorry for the long delay in responding.
 I have been looking at this issue and trying to determine a reasonable
approach given that it appears to be JVM dependent.

The easiest thing from a user perspective is to drop a symlink in
/etc/tomcat6/policy.d/ to either:

/etc/java-6-openjdk/security/java.policy
  or
/etc/java-7-openjdk/security/java.policy

The package can't merely add both symlinks, because tomcat won't start
if the target of the symlink doesn't exist.  It might be possible to
remove and then recreate the symlink in tomcat6 init script after the
JVM has been determined.

However, I'm wondering if it would be preferable to drop to add some
documentation regarding the symlink to /etc/default/tomcat6 and let the
user create the symlink when he/she enables security.

Thank you,
tony



-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 900 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/attachments/20120316/988cde33/attachment.pgp>


More information about the pkg-java-maintainers mailing list