Details
-
Sub-task
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
-
None
-
Reviewed
Description
Currently the jobclient accesses the mapred.system.dir to add job details. Hence the mapred.system.dir has the permissions of rwx-wx-wx. This could be a security loophole where the job files might get overwritten/tampered after the job submission.
Attachments
Attachments
Issue Links
- blocks
-
HADOOP-4991 Reduce task getting map output over HTTP should have right access control
-
- Resolved
-
-
MAPREDUCE-246 Job recovery should fail or kill a job that fails ACL checks upon restart, if the job was running previously
-
- Resolved
-
- is blocked by
-
MAPREDUCE-173 JobConf should also load resources from hdfs (or other filesystems)
-
- Resolved
-
-
HADOOP-5737 UGI checks in testcases are broken
-
- Closed
-
- is related to
-
HADOOP-8984 S3 File Permissions
-
- Resolved
-
- relates to
-
MAPREDUCE-1322 TestStreamingAsDifferentUser fails on trunk
-
- Closed
-
-
HADOOP-4487 Security features for Hadoop
-
- Closed
-