[jira] [Commented] (RANGER-738) Server-wide control over TRANSFORM clause in Hive

Kashif Khan (JIRA) Mon, 29 Aug 2016 23:54:54 -0700

    [ 
https://issues.apache.org/jira/browse/RANGER-738?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15448252#comment-15448252
 ]


Kashif Khan commented on RANGER-738:
------------------------------------

Hi Team,

Do we have any update here? 

> Server-wide control over TRANSFORM clause in Hive
> -------------------------------------------------
>
>                 Key: RANGER-738
>                 URL: https://issues.apache.org/jira/browse/RANGER-738
>             Project: Ranger
>          Issue Type: New Feature
>          Components: plugins
>            Reporter: Scott C Gray
>              Labels: features, security
>
> The TRANSFORM statement in Hive is a big security hole with Hive run without 
> impersonation, so when SQL Standard Authorization is enabled, the feature id 
> completely disabled which is a bit of a sledgehammer approach to securing 
> this statement.
> Sentry added support for restricting this statement at a per-user/group 
> level, which should be adopted by Ranger.
> https://issues.apache.org/jira/browse/SENTRY-598



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (RANGER-738) Server-wide control over TRANSFORM clause in Hive

Reply via email to