HP-UX Secure Resource Partitions (SRP) A.02.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Containers (SRP)

Variable Name: wss_version.

Default: 3.0.

Tomcat data path

The root directory for Tomcat data. The cmpt

service adds rules to allow the

compartment all access to this directory. Users and processes in the SRP

compartment can read, write, traverse (nsearch), and delete (ulink) the

contents of these directories.

Variable Name: data_path.

Default: /var/hpsrp/compartment_name/opt/hpws22/tomcat.

Tomcat executable

path

The root directory for Tomcat executables. The cmpt service adds rules to

allow the compartment read access to this directory.

Variable Name: exec_path.

Default: /opt/hpws22/tomcat.

Java Home Path

The java home path

Variable Name: java_path

Default:

/opt/java1.5

8.1.1.2 Configuration Data

SRP adds entries to the SRP compartment rules file (/etc/cmpt/compartment_name.rules) that

authorize access to the exec_path, data_path and java_path directories. SRP also adds an

include statement to add the rules from the /opt/hpsrp/etc/cmpt/tomcat.srp_incl file.

SRP adds entries to the SRP compartment rules file (/etc/cmpt/compartment_name.rules) that

authorize access to the exec_path (if WSS 3.0 Tomcat exists), data_path and

java_path directories. SRP also adds an include statement to add the rules from the

/opt/hpsrp/etc/cmpt/tomcat.srp_incl file. If WSS 3.0 Tomcat, /opt/hpws22/tomcat

(Default exec_path) is given access to by the compartment rules. If WSS 3.0 Tomcat doesn’t exist,

access to given to WSS 2.0 Tomcat i.e. /opt/hpws/tomcat (Default exec_path)

8.1.2 The ipfilter Service

The ipfilter service for the tomcat template adds rules to allow inbound requests to the specified

ports used by the Tomcat server to pass. You can also specify additional inbound destination TCP port

numbers for IPFilter pass rules.

8.1.2.1 Input Data

SRP prompts for the following data. You can also specify a variable name and value in the command

line, as described in 13.1 Creating an SRP Compartment or Adding Data to a Compartment.

Tomcat Control

port

Specifies the TCP port number on which the compartment Tomcat server will

receive request from apache webserver.

Variable Name: control_port.

Valid Input: A TCP port number in the range 1- 65535.

Default: 8005

Tomcat HTTP port

number

Specifies the TCP port number on which the compartment Tomcat server will

receive HTTP requests for servlets.

Variable Name: http_port.

Valid Input: A TCP port number in the range 1- 65535.