Uploaded image for project: 'Hadoop Map/Reduce'
  1. Hadoop Map/Reduce
  2. MAPREDUCE-563 Security features for Map/Reduce
  3. MAPREDUCE-181

Secure job submission

    XMLWordPrintableJSON

    Details

    • Type: Sub-task
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 0.21.0
    • Component/s: None
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

      Currently the jobclient accesses the mapred.system.dir to add job details. Hence the mapred.system.dir has the permissions of rwx-wx-wx. This could be a security loophole where the job files might get overwritten/tampered after the job submission.

        Attachments

        1. HADOOP-3578-v2.6.patch
          67 kB
          Amar Kamat
        2. HADOOP-3578-v2.7.patch
          67 kB
          Amar Kamat
        3. hadoop-3578-branch-20-example.patch
          24 kB
          Amar Kamat
        4. hadoop-3578-branch-20-example-2.patch
          10 kB
          Amar Kamat
        5. MAPRED-181-v3.8.patch
          124 kB
          Amar Kamat
        6. MAPRED-181-v3.32.patch
          159 kB
          Amar Kamat
        7. 181-1.patch
          106 kB
          Devaraj Das
        8. 181-2.patch
          161 kB
          Devaraj Das
        9. 181-3.patch
          151 kB
          Devaraj Das
        10. 181-3.patch
          152 kB
          Devaraj Das
        11. 181-4.patch
          154 kB
          Devaraj Das
        12. 181-5.1.patch
          157 kB
          Devaraj Das
        13. 181-5.1.patch
          157 kB
          Devaraj Das
        14. 181-6.patch
          166 kB
          Devaraj Das
        15. 181-8.patch
          169 kB
          Devaraj Das
        16. 181.20.s.3.patch
          157 kB
          Devaraj Das
        17. jobclient.patch
          0.7 kB
          Devaraj Das
        18. 181.20.s.3.fix.patch
          0.4 kB
          Ravi Gummadi

          Issue Links

          blocks

          Sub-task - The sub-task of the issue HADOOP-4991 Reduce task getting map output over HTTP should have right access control

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. MAPREDUCE-246 Job recovery should fail or kill a job that fails ACL checks upon restart, if the job was running previously

          • Major - Major loss of function.
          • Resolved
          is blocked by

          Bug - A problem which impairs or prevents the functions of the product. MAPREDUCE-173 JobConf should also load resources from hdfs (or other filesystems)

          • Major - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-5737 UGI checks in testcases are broken

          • Major - Major loss of function.
          • Closed
          is related to

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-8984 S3 File Permissions

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved
          relates to

          Bug - A problem which impairs or prevents the functions of the product. MAPREDUCE-1322 TestStreamingAsDifferentUser fails on trunk

          • Major - Major loss of function.
          • Closed

          New Feature - A new feature of the product, which has yet to be developed. HADOOP-4487 Security features for Hadoop

          • Major - Major loss of function.
          • Closed

            Activity

              People

              • Assignee:
                ddas Devaraj Das
                Reporter:
                amar_kamat Amar Kamat
              • Votes:
                0 Vote for this issue
                Watchers:
                14 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: