Jungtaek Lim created STORM-2960: ----------------------------------- Summary: Better to stress importance of setting up proper OS account for Storm processes Key: STORM-2960 URL: https://issues.apache.org/jira/browse/STORM-2960 Project: Apache Storm Issue Type: Documentation Components: documentation Reporter: Jungtaek Lim Assignee: Jungtaek Lim
We have SECURITY.md and also "Firewall/OS level Security" section, but the document doesn't explicitly mention the fact that Storm processes should use OS account(s) which should be properly restricted. We may also want to note that workers which could execute arbitrary code will be running with Supervisor OS account by default. -- This message was sent by Atlassian JIRA (v7.6.3#76005)