Setenv.sh config (best practice)

I have a dedicated box, a little old, but still solid, dual 8 core xeon CPU and 48 GB RAM.

Back in the day I had a high traffic CF/Raillo site that also needed to parse a 10GB+ MySQL file daily. So, I have Java up to 16 GB of RAM.

I still have those meetings in /opt/tomcat/bin/setenv.sh

export JAVA_OPTS="-Xms16384m -Xmx16384m -Xmn2048m -Xss1024k -XX:+ExplicitGCInvokesConcurrent -XX:+UseParallelGC -XX:+CMSClassUnloadingEnabled  -Djava.awt.headless=true -Duser.timezone=America/New_York -Djava.security.egd=file:/dev/./urandom"; 

Same machine, but not high traffic.

So, overkill (much)?

What is a good/better/best/proper set up for running 4-5 Lucee sites that get only a few dedicated sessions per day. Each site wold have 10-20 users per day, one or two of which may stay logged in.