[AMBARI-25192] Restrict Directory Access From HTTP - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 2.2.1
Fix Version/s: None
Component/s: ambari-server
Labels:
None

Description

Hi,

We did a vulnerability scan over Ambari-Server and it has found some directory may expose sensitive information that could help a malicious user to prepare more advanced attacks.

Is it okay to remove or restrict access to this directories?

/data

/test

Appreciate help, thank you!

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Michael Dennis Uanang

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 14/Mar/19 16:12

Updated:: 14/Mar/19 16:12