[
https://issues.apache.org/jira/browse/MESOS-6526?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15626946#comment-15626946
]
Yan Xu commented on MESOS-6526:
-------------------------------
Fetcher does it in a similar way:
https://github.com/apache/mesos/blob/fdd9304c414cbd8cfc47f8d575315c539e55843f/src/slave/containerizer/fetcher.cpp#L826
> `mesos-containerizer launch --environment` exposes executor env vars in `ps`.
> -----------------------------------------------------------------------------
>
> Key: MESOS-6526
> URL: https://issues.apache.org/jira/browse/MESOS-6526
> Project: Mesos
> Issue Type: Bug
> Components: containerization
> Affects Versions: 1.1.0
> Reporter: Yan Xu
> Priority: Critical
>
> With MESOS-6323, the helper {{mesos-containerizer launch}} takes a
> `--environment` flag for the env vars used by the executor. This is
> unpleasant because its a common practice that people use env vars to hide
> configs that are sensitive and now it's visible to non-root users on the host
> with a {{ps}} command.
> Given that we want to separate the environments of {{mesos-containerizer
> launch}} and the executor itself, perhaps we can just package and serialize
> the executor env vars in one env var {{MESOS_EXECUTOR_ENVIRONMENT}} and pass
> that to {{mesos-containerizer launch}} which could then get it through a flag
> the usual way.
> In general Mesos should do more to protect env vars but I'll file separate
> issues for them.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
