Gearman distributes jobs between clients and workers and should run on trusted internal networks.
¶ Access and Network Controls
- Restrict Gearman service ports to known clients/workers.
- Use network segmentation for job processing infrastructure.
- Avoid exposing Gearman endpoints publicly.
¶ Worker and Job Safety
- Run workers under least-privilege accounts.
- Validate job payloads before execution.
- Monitor queue latency and failed jobs for abuse indicators.