You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ambari.apache.org by "Yusaku Sako (JIRA)" <ji...@apache.org> on 2014/09/16 22:11:34 UTC
[jira] [Commented] (AMBARI-7325) ambari-server should run as an
unprivileged user by default
[ https://issues.apache.org/jira/browse/AMBARI-7325?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14136119#comment-14136119 ]
Yusaku Sako commented on AMBARI-7325:
-------------------------------------
[~dfj]
Do you want to work on the patch for this?
> ambari-server should run as an unprivileged user by default
> -----------------------------------------------------------
>
> Key: AMBARI-7325
> URL: https://issues.apache.org/jira/browse/AMBARI-7325
> Project: Ambari
> Issue Type: Improvement
> Components: ambari-server
> Affects Versions: 1.6.1
> Reporter: David Jorm
> Labels: security
>
> ambari-server needs to run as root. Is this necessary? By running as root, it means that an attacker able to exploit a flaw in ambari can take complete control of the server.
> $ ambari-server start
> /usr/sbin/ambari-server: line 53: /var/lib/ambari-server/ambari-env.sh: Permission denied
> Using python /usr/bin/python2.6
> Starting ambari-server
> ERROR: Exiting with exit code 1.
> REASON: Unable to start Ambari Server as user dfj. Please either run "ambari-server start" command as root, as sudo or as user "root"
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)