Uploaded image for project: 'Hadoop Map/Reduce'
  1. Hadoop Map/Reduce
  2. MAPREDUCE-563 Security features for Map/Reduce
  3. MAPREDUCE-181

Secure job submission

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 0.21.0
    • None
    • None
    • Reviewed

    Description

      Currently the jobclient accesses the mapred.system.dir to add job details. Hence the mapred.system.dir has the permissions of rwx-wx-wx. This could be a security loophole where the job files might get overwritten/tampered after the job submission.

      Attachments

        1. HADOOP-3578-v2.6.patch
          67 kB
          Amar Kamat
        2. HADOOP-3578-v2.7.patch
          67 kB
          Amar Kamat
        3. hadoop-3578-branch-20-example.patch
          24 kB
          Amar Kamat
        4. hadoop-3578-branch-20-example-2.patch
          10 kB
          Amar Kamat
        5. MAPRED-181-v3.8.patch
          124 kB
          Amar Kamat
        6. MAPRED-181-v3.32.patch
          159 kB
          Amar Kamat
        7. 181-1.patch
          106 kB
          Devaraj Das
        8. 181-2.patch
          161 kB
          Devaraj Das
        9. 181-3.patch
          151 kB
          Devaraj Das
        10. 181-3.patch
          152 kB
          Devaraj Das
        11. 181-4.patch
          154 kB
          Devaraj Das
        12. 181-5.1.patch
          157 kB
          Devaraj Das
        13. 181-5.1.patch
          157 kB
          Devaraj Das
        14. 181-6.patch
          166 kB
          Devaraj Das
        15. 181-8.patch
          169 kB
          Devaraj Das
        16. 181.20.s.3.patch
          157 kB
          Devaraj Das
        17. jobclient.patch
          0.7 kB
          Devaraj Das
        18. 181.20.s.3.fix.patch
          0.4 kB
          Ravi Gummadi

        Issue Links

          blocks

          Sub-task - The sub-task of the issue HADOOP-4991 Reduce task getting map output over HTTP should have right access control

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. MAPREDUCE-246 Job recovery should fail or kill a job that fails ACL checks upon restart, if the job was running previously

          • Major - Major loss of function.
          • Resolved
          is blocked by

          Bug - A problem which impairs or prevents the functions of the product. MAPREDUCE-173 JobConf should also load resources from hdfs (or other filesystems)

          • Major - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-5737 UGI checks in testcases are broken

          • Major - Major loss of function.
          • Closed
          is related to

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-8984 S3 File Permissions

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved
          relates to

          Bug - A problem which impairs or prevents the functions of the product. MAPREDUCE-1322 TestStreamingAsDifferentUser fails on trunk

          • Major - Major loss of function.
          • Closed

          New Feature - A new feature of the product, which has yet to be developed. HADOOP-4487 Security features for Hadoop

          • Major - Major loss of function.
          • Closed

          Activity

            People

              ddas Devaraj Das
              amar_kamat Amar Kamat
              Votes:
              0 Vote for this issue
              Watchers:
              14 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: