> "nice way" is relative. It seems the most common way for Debian to create logs is as root:adm. Is
> there any rule which says catalina.out must be owned by tomcat?
What about the logs produced by the java tomcat9 process? They will be owned by tomcat:adm, and there is no config tweak that I know of to change that: the process just runs as tomcat. In the current debian packaging of tomcat9 all its logs are consistent in their ownership: tomcat:adm. What is the argument we have to ask the debian packager to change that so that one set of logs is root:adm, and the other is tomcat:adm?
> Actually, maybe you did not realize, but the logs that are written by rsyslog and tomcat are same
> log lines in different formatting.
And it's probably again in the systemd journal, no? :)
Let's switch to code. What is our concrete proposal for debian to change its logging for tomcat9? We need to consider the 4 things that write to /var/log/tomcat9:
- rsyslog
- tomcat9 itself
- logrotate
- tomcat9's postinst script
> "nice way" is relative. It seems the most common way for Debian to create logs is as root:adm. Is
> there any rule which says catalina.out must be owned by tomcat?
What about the logs produced by the java tomcat9 process? They will be owned by tomcat:adm, and there is no config tweak that I know of to change that: the process just runs as tomcat. In the current debian packaging of tomcat9 all its logs are consistent in their ownership: tomcat:adm. What is the argument we have to ask the debian packager to change that so that one set of logs is root:adm, and the other is tomcat:adm?
> Actually, maybe you did not realize, but the logs that are written by rsyslog and tomcat are same
> log lines in different formatting.
And it's probably again in the systemd journal, no? :)
Let's switch to code. What is our concrete proposal for debian to change its logging for tomcat9? We need to consider the 4 things that write to /var/log/tomcat9:
- rsyslog
- tomcat9 itself
- logrotate
- tomcat9's postinst script