hadoop-mapreduce-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Devaraj Das (JIRA)" <j...@apache.org>
Subject [jira] Commented: (MAPREDUCE-2096) Secure local filesystem IO from symlink vulnerabilities
Date Wed, 06 Oct 2010 20:18:34 GMT

    [ https://issues.apache.org/jira/browse/MAPREDUCE-2096?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12918656#action_12918656

Devaraj Das commented on MAPREDUCE-2096:

bq. This patch fixes the above issue by having TaskRunner call to a version of reportDiagonsticInfo
that doesn't authorize the caller.
The same should be done for fsError.

> Secure local filesystem IO from symlink vulnerabilities
> -------------------------------------------------------
>                 Key: MAPREDUCE-2096
>                 URL: https://issues.apache.org/jira/browse/MAPREDUCE-2096
>             Project: Hadoop Map/Reduce
>          Issue Type: Bug
>          Components: jobtracker, security, tasktracker
>    Affects Versions: 0.22.0
>            Reporter: Todd Lipcon
>            Assignee: Todd Lipcon
>            Priority: Blocker
>         Attachments: secure-files-9.txt, secure-files-authorized-jvm-fix.txt
> This JIRA is to contribute a patch developed on the private security@ mailing list.
> The vulnerability is that MR daemons occasionally open files that are located in a path
where the user has write access. A malicious user may place a symlink in place of the expected
file in order to cause the daemon to instead read another file on the system -- one which
the attacker may not naturally be able to access. This includes delegation tokens belong to
other users, log files, keytabs, etc.

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

View raw message