Should litespeed be rans as root in a shared rails env?

Discussion in 'Ruby/Rails' started by nathanc, Jul 20, 2007.

  1. nathanc

    nathanc New Member

    Should litespeed be rans as root in a shared rails env?
  2. mistwang

    mistwang LiteSpeed Staff

    No, running as root should be avoid whenever possible, too risky. One security flaw will comprise the whole server.
  3. nathanc

    nathanc New Member

    I agree, however I keep getting this warning

    [config:vhost:mysite.private] Uid of /mnt/on/my/share/www.mysite.private/web/rails/public/ is smaller than minimum requirement 11, use server uid!

    I cant use server uid like it recommends cause I need it to run the rails app as the docroot owner.
    Any recommendations on resolving this warning?

  4. mistwang

    mistwang LiteSpeed Staff

    You could make sure the user id of the docroot owner is higher than 11. Never let root user own the docroot directory.

Share This Page