[ 
https://issues.apache.org/jira/browse/YARN-2482?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14231875#comment-14231875
 ] 

Chen He commented on YARN-2482:
-------------------------------

I guess we can filter unnecessary strings and do corresponding permission check 
for given users when we parsing those inputs. 

> DockerContainerExecutor configuration
> -------------------------------------
>
>                 Key: YARN-2482
>                 URL: https://issues.apache.org/jira/browse/YARN-2482
>             Project: Hadoop YARN
>          Issue Type: New Feature
>            Reporter: Abin Shahab
>              Labels: security
>
> Currently DockerContainerExecutor can be configured from yarn-site.xml, and 
> users can add arbtrary arguments to the container launch command. This should 
> be fixed so that the cluster and other jobs are protected from malicious 
> string injections.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to