Jungtaek Lim created STORM-2960:
-----------------------------------
Summary: Better to stress importance of setting up proper OS
account for Storm processes
Key: STORM-2960
URL: https://issues.apache.org/jira/browse/STORM-2960
Project: Apache Storm
Issue Type: Documentation
Components: documentation
Reporter: Jungtaek Lim
Assignee: Jungtaek Lim
We have SECURITY.md and also "Firewall/OS level Security" section, but the
document doesn't explicitly mention the fact that Storm processes should use OS
account(s) which should be properly restricted. We may also want to note that
workers which could execute arbitrary code will be running with Supervisor OS
account by default.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
