bolkedebruin commented on issue #9579: Add Apache Ranger Authorization URL: https://github.com/apache/druid/pull/9579#issuecomment-610899468 @himanshug both vulnerabilities are only exposed when you configure them to do so. It is not a default config. Log4j requires the SocketAppender to be configured which is not (overly) typical to do and Kafka needs to be enabled for Ranger which is also not very typical to do. I can removed the dependency on Kafka from Ranger without any adverse effects.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
