[ https://issues.apache.org/jira/browse/YARN-7381?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16272056#comment-16272056 ]
Ray Chiang commented on YARN-7381: ---------------------------------- [~leftnoteasy], I believe launch_container.sh contains all the environment variables. If anyone has sensitive information there, then it will get exposed by turning on this debugging information, correct? That's why we've had to have whitelist style filters for environment variables before. I can't think of any security risk related to the directory listing offhand, not that I'm any kind of security expert. If we go forward with this change, I'd strongly recommend putting in detailed information about that in the Release Notes field. > Enable the configuration: yarn.nodemanager.log-container-debug-info.enabled > --------------------------------------------------------------------------- > > Key: YARN-7381 > URL: https://issues.apache.org/jira/browse/YARN-7381 > Project: Hadoop YARN > Issue Type: Bug > Affects Versions: 2.9.0, 3.0.0, 3.1.0 > Reporter: Xuan Gong > Assignee: Xuan Gong > Priority: Critical > Attachments: YARN-7381.1.patch > > > Enable the configuration "yarn.nodemanager.log-container-debug-info.enabled", > so we can aggregate launch_container.sh and directory.info -- This message was sent by Atlassian JIRA (v6.4.14#64029) --------------------------------------------------------------------- To unsubscribe, e-mail: yarn-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: yarn-issues-h...@hadoop.apache.org