[ https://issues.apache.org/jira/browse/STORM-2960?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
ASF GitHub Bot updated STORM-2960: ---------------------------------- Labels: pull-request-available (was: ) > Better to stress importance of setting up proper OS account for Storm > processes > ------------------------------------------------------------------------------- > > Key: STORM-2960 > URL: https://issues.apache.org/jira/browse/STORM-2960 > Project: Apache Storm > Issue Type: Documentation > Components: documentation > Reporter: Jungtaek Lim > Assignee: Jungtaek Lim > Priority: Major > Labels: pull-request-available > > We have SECURITY.md and also "Firewall/OS level Security" section, but the > document doesn't explicitly mention the fact that Storm processes should use > OS account(s) which should be properly restricted. We may also want to note > that workers which could execute arbitrary code will be running with > Supervisor OS account by default. -- This message was sent by Atlassian JIRA (v7.6.3#76005)