You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ambari.apache.org by "Yusaku Sako (JIRA)" <ji...@apache.org> on 2014/09/16 05:25:33 UTC

[jira] [Commented] (AMBARI-7325) ambari-server needs to run as root

    [ https://issues.apache.org/jira/browse/AMBARI-7325?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14134888#comment-14134888 ] 

Yusaku Sako commented on AMBARI-7325:
-------------------------------------

[~dfj]
There's an option in "ambari-server setup" to set which user to run the ambari-server daemon as (this user specified does not need to be root/sudo user).


> ambari-server needs to run as root
> ----------------------------------
>
>                 Key: AMBARI-7325
>                 URL: https://issues.apache.org/jira/browse/AMBARI-7325
>             Project: Ambari
>          Issue Type: Improvement
>          Components: ambari-server
>    Affects Versions: 1.6.1
>            Reporter: David Jorm
>              Labels: security
>
> ambari-server needs to run as root. Is this necessary? By running as root, it means that an attacker able to exploit a flaw in ambari can take complete control of the server.
>     $ ambari-server start
>     /usr/sbin/ambari-server: line 53: /var/lib/ambari-server/ambari-env.sh: Permission denied
>     Using python  /usr/bin/python2.6
>     Starting ambari-server
>     ERROR: Exiting with exit code 1. 
>     REASON: Unable to start Ambari Server as user dfj. Please either run "ambari-server start" command as root, as sudo or as user "root"



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)