[
https://issues.apache.org/jira/browse/YARN-7381?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16272056#comment-16272056
]
Ray Chiang commented on YARN-7381:
----------------------------------
[~leftnoteasy], I believe launch_container.sh contains all the environment
variables. If anyone has sensitive information there, then it will get exposed
by turning on this debugging information, correct? That's why we've had to
have whitelist style filters for environment variables before.
I can't think of any security risk related to the directory listing offhand,
not that I'm any kind of security expert.
If we go forward with this change, I'd strongly recommend putting in detailed
information about that in the Release Notes field.
> Enable the configuration: yarn.nodemanager.log-container-debug-info.enabled
> ---------------------------------------------------------------------------
>
> Key: YARN-7381
> URL: https://issues.apache.org/jira/browse/YARN-7381
> Project: Hadoop YARN
> Issue Type: Bug
> Affects Versions: 2.9.0, 3.0.0, 3.1.0
> Reporter: Xuan Gong
> Assignee: Xuan Gong
> Priority: Critical
> Attachments: YARN-7381.1.patch
>
>
> Enable the configuration "yarn.nodemanager.log-container-debug-info.enabled",
> so we can aggregate launch_container.sh and directory.info
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: yarn-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: yarn-issues-h...@hadoop.apache.org
