Running CF10-Enterprise, 10,0,9,284568 with Update 9. This is running under JDK 1.7.0_21, and is fronted by Apache 2.2.x and all runs under RHEL6.x. It seems to work fine 
In short - is it possible to create a new instance, and have that new instance run as a different user than the "main" instance? If so, what trouble does it cause?
In more detail...
The main reason we'd like to have a separate Instance is for "complete" isolation, to prevent one CF process or instance from affecting another, vs having one CF instance and just a lot of websites under it. Service isolation is a policy.
I spin up a new Instance (CF Admin -> Enterprise Manager -> Instance Manager), and start it. It runs as the user "cfusion", which is the same user that the main instance runs as. I'd prefer it to run as another user, namely the user that owns the site this instance is for. So if I have site www.site1.com owned by user site1, I'd like the CF java process to run as user site1 as well, and not the cfusion user.
In the past, this "complete" isolation was managed by deploying CF9 as a WAR file and running it under Tomcat. Each website had its own user in /etc/passwd, and that was the user the CF-under-Tomcat process ran as, the files were owned by that user, etc. But CF10 (currently at least) doesn't support being run as a WAR file under Tomcat.
The files in /opt/coldfusion10/ are owned by the user cfusion. An instance I created is in /opt/coldfusion10/testsite/. Could I chown -R testsite:testsite /opt/coldfusion10/testsite/ (user named same as instance name)? And the run /opt/coldfusion10/testsite/bin/coldfusion start, as the user testsite?
I'd lose the ability to easily manage this instance from the main CF Administrator site, such as Updates. Under CF9, the update process sucked and was manual and I had to do it for each site anyway (sigh.) But CF10 has a nice(r) update method, and I'd lose that. But if that's the only thing I lose, and I have to manually update each instance, I guess I can live with that (no different than what I'm doing now, still easier though under CF10.)
I suspect this is just simple lack-of-knowledge on my part (as are many things in my life.)
Thank you,
PH