Details
-
Type:
Bug
-
Status: Closed (View Workflow)
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 1.1.0
-
Fix Version/s: 1.2.0
-
Component/s: Core
-
Labels:None
-
Epic Link:
Description
This is really poor manners.
I'm not sure if there's a reason for it other than this has not been looked at but please consider:
- not allowing maxscale to run as the root user
- if running as the root user, dropping privileges to a different user (maxscale?) that's configured for example in MaxScale.cnf
- this should pretty much match the behaviour of MySQL or MariaDB, and it prevents possible exploits should something break in the code.
[note: you need a component: Generic and a Versions: All versions]