aurora-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bill Farner (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (AURORA-1641) Shell health checker is running as root
Date Wed, 30 Mar 2016 21:59:25 GMT

    [ https://issues.apache.org/jira/browse/AURORA-1641?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15218953#comment-15218953
] 

Bill Farner commented on AURORA-1641:
-------------------------------------

https://reviews.apache.org/r/45506/

> Shell health checker is running as root
> ---------------------------------------
>
>                 Key: AURORA-1641
>                 URL: https://issues.apache.org/jira/browse/AURORA-1641
>             Project: Aurora
>          Issue Type: Bug
>          Components: Executor, Security
>            Reporter: Stephan Erb
>            Priority: Blocker
>
> As the operator of an Aurora cluster, I have to guarantee that users can run commands
only with the privileges of their {{role}}. The new health checker feature is risky in that
regard, as it runs all health check commands with the privileges of the Thermos runner. In
most common deployments this is root.
> The Thermos runner supports various means for setting the uid/user/role that is used
to run user processes. The same configuration should also apply to the user-defined health
checking command.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message