Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP

Loading…

gunicorn executes as 'root' #7

Closed
vfleurima opened this Issue · 0 comments

2 participants

@vfleurima

The file '/etc/supervisord.conf' contains the following section for managing the Django/gunicorn app:

[program:polls]
command=/home/ubuntu/.virtualenvs/polls/bin/gunicorn_django -c gunicorn.conf.py settings.py
directory=/home/ubuntu/webapps/polls
user=root
autostart=true
autorestart=true
redirect_stderr=true

This implies that the gunicorn processes execute as root, which is easily verified using 'top'.

This is incredibly dangerous. Is there some reason why it doesn't execute as 'www-data' or some other user?

@gcollazo gcollazo closed this
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Something went wrong with that request. Please try again.