hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hudson (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-6898) FileSystem.copyToLocal creates files with 777 permissions
Date Tue, 12 Apr 2011 22:53:07 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-6898?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13019098#comment-13019098
] 

Hudson commented on HADOOP-6898:
--------------------------------

Integrated in Hadoop-Common-trunk-Commit #547 (See [https://hudson.apache.org/hudson/job/Hadoop-Common-trunk-Commit/547/])
    HADOOP-6898. FileSystem.copyToLocal creates files with 777 permissions. Contributed by
Aaron T. Myers.


> FileSystem.copyToLocal creates files with 777 permissions
> ---------------------------------------------------------
>
>                 Key: HADOOP-6898
>                 URL: https://issues.apache.org/jira/browse/HADOOP-6898
>             Project: Hadoop Common
>          Issue Type: Bug
>          Components: fs, security
>            Reporter: Todd Lipcon
>            Assignee: Aaron T. Myers
>            Priority: Blocker
>             Fix For: 0.22.0
>
>         Attachments: hadoop-6898.0.txt
>
>
> FileSystem.copyToLocal ends up calling through to FileUtil.copy, which calls create()
on the target file system without passing any permission object. Therefore, the file ends
up getting created locally with 777 permissions, which is dangerous -- even if the caller
then fixes up permissions afterwards, it exposes a window in which an attacker can open the
file.

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message