[RANGER-608] Denied access to list a directory does not generate audit - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 0.5.0
Fix Version/s: 0.6.0
Component/s: plugins
Labels:
None

Description

Attempting to list a directory (for example, /demo/data/Customers) on which the user does not have READ and EXECUTE access fails with 'Permission denied' error - as expected. Ranger HDFS plugin generates an audit log for access to HDFS files/directories - irrespective of whether the access is allowed or denied. However, if the user does not have EXECUTE access on the parent directory (for example, /demo/data), no audit log is generated for the denial.

Attachments

Activity

People

Assignee:: Madhan Neethiraj

Reporter:: Madhan Neethiraj

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 13/Aug/15 08:26

Updated:: 05/Nov/15 22:02

Resolved:: 05/Nov/15 22:02