I have a Linux box being shared by various developers. They want to deploy their war files in apache tomcat which in shared location (/opt/tomcat).
Since they don't have sudo access, I have to change the folder permission for tomcat directory.
directory structure under /opt/tomcat
is –
bin/
conf/
lib/
logs/
temp/
webapps/
work/
What are the best practices in above situation – Most suitable access permission to user ?
For time being, I have changed permission to 777 to webapps and logs.
Thanks
Best Answer
I do it this way:
We put the tomcat user as the owner of the folder of tomcat:
Users can not modify the configuration of tomcat:
Users can modify the other folders:
Activate the sticky-bit for new files keep permissions defined:
Finally, we add the tomcat group we want users who can use the tomcat: