From 7ec1bfa057eedecd404b3bfd1c192bc1bcff7964 Mon Sep 17 00:00:00 2001
From: Jordan Milne <jordan.milne@saynotolinux.com>
Date: Mon, 6 Apr 2015 06:25:45 -0700
Subject: [PATCH] Add scary comment about `g.debug` to the default
 `development.update`

It's not obvious that `g.debug = True` is bad to do in prod unless you've
read `example.ini` as well.
---
 install-reddit.sh | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/install-reddit.sh b/install-reddit.sh
index de409c2db..081b08ece 100755
--- a/install-reddit.sh
+++ b/install-reddit.sh
@@ -313,6 +313,9 @@ if [ ! -f development.update ]; then
 # generate a new development.ini
 
 [DEFAULT]
+# global debug flag -- displays pylons stacktrace rather than 500 page on error when true
+# WARNING: a pylons stacktrace allows remote code execution. Make sure this is false
+# if your server is publicly accessible.
 debug = true
 
 disable_ads = true