[
https://issues.apache.org/jira/browse/MAPREDUCE-899?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12745871#action_12745871
]
Vinod K V commented on MAPREDUCE-899:
-------------------------------------
There are two possible solutions:
- Let the onus be on the administrators to be extra careful while configuring.
Code is left as is and simple but the main disadvantage is that it gives a
false sense of security and security holes might not be discovered until later.
- Put explicit changes in the TaskTracker to shout aloud in case of
misconfiguration of these permissions. If needed, special ant arguments might
be added to disable these checks while testing. Though adds a bit of new code,
it is advantageous in that administrators are informed very early.
After discussing with Rajiv/Hemanth/Sreekanth, the later is agreed upon.
> When using LinuxTaskController, localized files may become accessible to
> unintended users if permissions are misconfigured.
> ---------------------------------------------------------------------------------------------------------------------------
>
> Key: MAPREDUCE-899
> URL: https://issues.apache.org/jira/browse/MAPREDUCE-899
> Project: Hadoop Map/Reduce
> Issue Type: Bug
> Components: tasktracker
> Reporter: Vinod K V
>
> To enforce the accessibility of job files to only the job-owner and the
> TaskTracker, as per MAPREDUCE-842, it is _trusted_ that the setuid/setgid
> linux TaskController binary is group owned by a _special group_ to which only
> TaskTracker belongs and not just any group to which TT belongs. If the trust
> is broken, possibly due to misconfiguration by admins, the local files become
> accessible to unintended users, yet giving false sense of security to the
> admins.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
