[
https://issues.apache.org/jira/browse/PIG-3511?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13877137#comment-13877137
]
Aniket Mokashi commented on PIG-3511:
-------------------------------------
In context of hadoop 1, rolling hadoop with the proper fixes for this
distributed cache problem could be hard. Currently, pig is writing jars to
pig.temp.dir (/tmp), a quick fix would be to make sure pig uses
JobSubmissionFiles.getStagingDir or similar api to write its jars. Does that
sound like a reasonable approach?
> Security: Pig temporary directories might have world readable permissions
> -------------------------------------------------------------------------
>
> Key: PIG-3511
> URL: https://issues.apache.org/jira/browse/PIG-3511
> Project: Pig
> Issue Type: Bug
> Reporter: Aniket Mokashi
> Assignee: Rohini Palaniswamy
> Fix For: 0.13.0
>
>
> Currently, udf jars are copied to FileLocalizer.getTemporaryPath which is a
> unsecured location. We need to make sure the directory that we copy these
> jars to have 700 permission settings (similar behavior as JobClient).
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
