Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-9013

Hive set command exposes metastore db password

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 0.13.1
    • Fix Version/s: 1.3.0, 2.0.0, 1.2.2
    • Component/s: None
    • Labels:

      Description

      When auth is enabled, we still need set command to set some variables(e.g. mapreduce.job.queuename), but set command alone also list all information(including vars in restrict list), this exposes like "javax.jdo.option.ConnectionPassword"
      I think conf var in the restrict list should also excluded from dump vars command.

        Attachments

        1. HIVE-9013.5.patch-branch1.2
          12 kB
          Sushanth Sowmyan
        2. HIVE-9013.5.patch-branch1
          12 kB
          Sushanth Sowmyan
        3. HIVE-9013.5.patch
          12 kB
          Binglin Chang
        4. HIVE-9013.5.patch
          12 kB
          Thejas Nair
        5. HIVE-9013.4.patch
          4 kB
          Binglin Chang
        6. HIVE-9013.3.patch
          5 kB
          Binglin Chang
        7. HIVE-9013.2.patch
          3 kB
          Binglin Chang
        8. HIVE-9013.1.patch
          2 kB
          Binglin Chang

          Issue Links

            Activity

              People

              • Assignee:
                decster Binglin Chang
                Reporter:
                decster Binglin Chang
              • Votes:
                0 Vote for this issue
                Watchers:
                8 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: