Details

    • Sub-task
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 0.21.0
    • None
    • None
    • Reviewed

    Description

      Currently the jobclient accesses the mapred.system.dir to add job details. Hence the mapred.system.dir has the permissions of rwx-wx-wx. This could be a security loophole where the job files might get overwritten/tampered after the job submission.

      Attachments

        1. HADOOP-3578-v2.6.patch
          67 kB
          Amar Kamat
        2. HADOOP-3578-v2.7.patch
          67 kB
          Amar Kamat
        3. hadoop-3578-branch-20-example.patch
          24 kB
          Amar Kamat
        4. hadoop-3578-branch-20-example-2.patch
          10 kB
          Amar Kamat
        5. MAPRED-181-v3.8.patch
          124 kB
          Amar Kamat
        6. MAPRED-181-v3.32.patch
          159 kB
          Amar Kamat
        7. 181-1.patch
          106 kB
          Devaraj Das
        8. 181-2.patch
          161 kB
          Devaraj Das
        9. 181-3.patch
          151 kB
          Devaraj Das
        10. 181-3.patch
          152 kB
          Devaraj Das
        11. 181-4.patch
          154 kB
          Devaraj Das
        12. 181-5.1.patch
          157 kB
          Devaraj Das
        13. 181-5.1.patch
          157 kB
          Devaraj Das
        14. 181-6.patch
          166 kB
          Devaraj Das
        15. 181-8.patch
          169 kB
          Devaraj Das
        16. 181.20.s.3.patch
          157 kB
          Devaraj Das
        17. jobclient.patch
          0.7 kB
          Devaraj Das
        18. 181.20.s.3.fix.patch
          0.4 kB
          Ravi Gummadi

        Issue Links

          Activity

            People

              ddas Devaraj Das
              amar_kamat Amar Kamat
              Votes:
              0 Vote for this issue
              Watchers:
              14 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: