Sign in through GitHub

Please read for an updated status on RailsCasts:

Learn more or hide this

Aleksey Morozov's Profile

GitHub User: AlexeyMorozov

Comments by Aleksey Morozov

Avatar

Hello!

May scripts from /etc/init.d/ be run by root at startup time?
If so, we have vulnerability allows "deployer" user change unicorn_init.sh and get root access, havent' we?

config/deploy.rb
sudo "ln -nfs #{current_path}/config/unicorn_init.sh /etc/init.d/unicorn_#{application}"