Return-Path: X-Original-To: apmail-cassandra-commits-archive@www.apache.org Delivered-To: apmail-cassandra-commits-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 23A291832A for ; Fri, 24 Jul 2015 12:02:05 +0000 (UTC) Received: (qmail 23887 invoked by uid 500); 24 Jul 2015 12:02:05 -0000 Delivered-To: apmail-cassandra-commits-archive@cassandra.apache.org Received: (qmail 23855 invoked by uid 500); 24 Jul 2015 12:02:05 -0000 Mailing-List: contact commits-help@cassandra.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@cassandra.apache.org Delivered-To: mailing list commits@cassandra.apache.org Received: (qmail 23844 invoked by uid 99); 24 Jul 2015 12:02:04 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 24 Jul 2015 12:02:04 +0000 Date: Fri, 24 Jul 2015 12:02:04 +0000 (UTC) From: "Robert Stupp (JIRA)" To: commits@cassandra.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Updated] (CASSANDRA-9889) Disable scripted UDFs by default MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/CASSANDRA-9889?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Robert Stupp updated CASSANDRA-9889: ------------------------------------ Fix Version/s: (was: 3.0.x) 3.0.0 rc1 > Disable scripted UDFs by default > -------------------------------- > > Key: CASSANDRA-9889 > URL: https://issues.apache.org/jira/browse/CASSANDRA-9889 > Project: Cassandra > Issue Type: Improvement > Reporter: Robert Stupp > Assignee: Robert Stupp > Priority: Minor > Fix For: 3.0.0 rc1 > > > (Follow-up to CASSANDRA-9402) > TL;DR this ticket is about to add an other config option to enable scripted UDFs. > Securing Java-UDFs is much easier than scripted UDFs. > The secure execution of scripted UDFs heavily relies on "how secure" a particular script provider implementation is. Nashorn is probably pretty good at this - but (as discussed offline with [~iamaleksey]) we are not certain. This becomes worse with other JSR-223 providers (which need to be installed by the user anyway). > E.g.: > {noformat} > # Enables use of scripted UDFs. > # Java UDFs are always enabled, if enable_user_defined_functions is true. > # Enable this option to be able to use UDFs with "language javascript" or any custom JSR-223 provider. > enable_scripted_user_defined_functions: false > {noformat} > TBH: I would feel more comfortable to have this one. But we should review this along with enable_user_defined_functions for 4.0. -- This message was sent by Atlassian JIRA (v6.3.4#6332)