Github user pwendell commented on the pull request:
https://github.com/apache/spark/pull/204#issuecomment-39420831
Hey @tgravescs, just so I understand, what purpose does the intermediate
directory serve in this case? It seems like if the file is visible to other
users in the intermediate directory, then the security is already broken. If
the file is not visible in the intermediate directory, then copying it wont'
change the visibility for other users...
I think if we just add a config to set the permissions bits on the
directory Spark creates for each application, then we are in pretty good shape
(provided document this as well).
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
