Do not allow to run as root user unless explicitly compiled
-----------------------------------------------------------
Key: TS-352
URL: https://issues.apache.org/jira/browse/TS-352
Project: Traffic Server
Issue Type: Bug
Components: Config
Affects Versions: 2.1.1
Reporter: Mladen Turk
Assignee: Mladen Turk
Fix For: 2.1.1
Currently one can specify the proxy.config.admin.user_id=root making the
trafficserver to serve all pages under root account.
Check the user_id provided making sure it's uid isn't zero.
Specifying -DBIG_SECURITY_HOLE at build time overrides that check.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
