[
https://issues.apache.org/jira/browse/AMBARI-7325?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Yusaku Sako updated AMBARI-7325:
--------------------------------
Summary: ambari-server should run as an unprivileged user by default (was:
ambari-server needs to run as root)
> ambari-server should run as an unprivileged user by default
> -----------------------------------------------------------
>
> Key: AMBARI-7325
> URL: https://issues.apache.org/jira/browse/AMBARI-7325
> Project: Ambari
> Issue Type: Improvement
> Components: ambari-server
> Affects Versions: 1.6.1
> Reporter: David Jorm
> Labels: security
>
> ambari-server needs to run as root. Is this necessary? By running as root, it
> means that an attacker able to exploit a flaw in ambari can take complete
> control of the server.
> $ ambari-server start
> /usr/sbin/ambari-server: line 53: /var/lib/ambari-server/ambari-env.sh:
> Permission denied
> Using python /usr/bin/python2.6
> Starting ambari-server
> ERROR: Exiting with exit code 1.
> REASON: Unable to start Ambari Server as user dfj. Please either run
> "ambari-server start" command as root, as sudo or as user "root"
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
