# Limit Rights

Processes should be separated and run with the lowest required rights available.

# Background

In case attacker were able to make use of vulnerabilities, such as the usage of the exec() method, code can be executed. Running this process with administrator rights can therefore cause immense damage compared to ones with lower privileges.

TIP

An application should run under a separate user, having minimal privileges
Do not use the Root user

← Simplify Regular Expressions Prohibit eval() →