[HBASE-13774] DLS, DLR, and replication queue items should not include arbitrary full paths - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Incomplete
Affects Version/s: 1.0.1, 1.1.0, 0.98.12, 1.2.0, 2.0.0
Fix Version/s: None
Component/s: None
Labels:
None

Description

DLS, DLR, and replication queue items should not include arbitrary full pathnames. Audit and fix where we have this. Even with znodes properly secured it seems better to simply record a filename in the queue item and build the full path to the file in storage under a preconfigured root directory with secure permissions.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Andrew Kyle Purtell

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 25/May/15 17:28

Updated:: 24/Jun/22 19:11

Resolved:: 24/Jun/22 19:11