Michael Dennis Uanang created AMBARI-25192:
----------------------------------------------
Summary: Restrict Directory Access From HTTP
Key: AMBARI-25192
URL: https://issues.apache.org/jira/browse/AMBARI-25192
Project: Ambari
Issue Type: Improvement
Components: ambari-server
Affects Versions: 2.2.1
Reporter: Michael Dennis Uanang
Hi,
We did a vulnerability scan over Ambari-Server and it has found some directory
may expose sensitive information that could help a malicious user to prepare
more advanced attacks.
Is it okay to remove or restrict access to this directories?
/data
/test
Appreciate help, thank you!
MD
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
