accumulo-notifications mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Josh Elser (JIRA)" <>
Subject [jira] [Commented] (ACCUMULO-3946) Not all accumulo events are audited for Audit logging
Date Fri, 07 Aug 2015 23:39:45 GMT


Josh Elser commented on ACCUMULO-3946:

I'm used to auditing recording whether or not an operation was permitted, not the application-level
success of whether or not that operation succeeded. From a security standpoint, you are concerned
when a user "did" something, not necessarily the outcome of it.

I assumed your changes would be limited to AuditedSecurityOperation and possibly calls in
the RPC server implementation to AuditedSecurityOperation.

> Not all accumulo events are audited for Audit logging
> -----------------------------------------------------
>                 Key: ACCUMULO-3946
>                 URL:
>             Project: Accumulo
>          Issue Type: Bug
>    Affects Versions: 1.5.3
>            Reporter: James Mello
>            Assignee: James Mello
>             Fix For: 1.5.4
> Currently accumulo does not log all the major events such as table creation and permissions
changes. Please modify the existing logging to include missing auditing. Note this is related
to ticket ACCUMUO-3939.

This message was sent by Atlassian JIRA

View raw message