Details
-
Type:
Sub-task
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: 0.21.0
-
Component/s: None
-
Labels:None
-
Hadoop Flags:Reviewed
Description
Currently the jobclient accesses the mapred.system.dir to add job details. Hence the mapred.system.dir has the permissions of rwx-wx-wx. This could be a security loophole where the job files might get overwritten/tampered after the job submission.
Issue Links
- blocks
-
HADOOP-4991
Reduce task getting map output over HTTP should have right access control
-
- Resolved
-
-
MAPREDUCE-246
Job recovery should fail or kill a job that fails ACL checks upon restart, if the job was running previously
-
- Open
-
- is blocked by
-
MAPREDUCE-173
JobConf should also load resources from hdfs (or other filesystems)
-
- Open
-
-
HADOOP-5737
UGI checks in testcases are broken
-
- Closed
-
- is related to
-
HADOOP-8984
S3 File Permissions
-
- Open
-
- relates to
-
MAPREDUCE-1322
TestStreamingAsDifferentUser fails on trunk
-
- Closed
-
-
HADOOP-4487
Security features for Hadoop
-
- Closed
-
