Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Already on GitHub? Sign in to your account

gunicorn executes as 'root' #7

Closed
vfleurima opened this Issue Aug 2, 2011 · 0 comments

Comments

Projects
None yet
2 participants

The file '/etc/supervisord.conf' contains the following section for managing the Django/gunicorn app:

[program:polls]
command=/home/ubuntu/.virtualenvs/polls/bin/gunicorn_django -c gunicorn.conf.py settings.py
directory=/home/ubuntu/webapps/polls
user=root
autostart=true
autorestart=true
redirect_stderr=true

This implies that the gunicorn processes execute as root, which is easily verified using 'top'.

This is incredibly dangerous. Is there some reason why it doesn't execute as 'www-data' or some other user?

@gcollazo gcollazo closed this Aug 14, 2011

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment