You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@accumulo.apache.org by "Christopher Tubbs (Jira)" <ji...@apache.org> on 2020/10/28 21:58:00 UTC

[jira] [Resolved] (ACCUMULO-2938) Investigate logging on KeyExtent to ensure no data leakage

     [ https://issues.apache.org/jira/browse/ACCUMULO-2938?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Christopher Tubbs resolved ACCUMULO-2938.
-----------------------------------------
    Resolution: Not A Problem

I recently refactored KeyExtent and did not observe any relevant problems of the type described here. If this is still a problem, please open a new issue or PR at https://github.com/apache/accumulo

> Investigate logging on KeyExtent to ensure no data leakage
> ----------------------------------------------------------
>
>                 Key: ACCUMULO-2938
>                 URL: https://issues.apache.org/jira/browse/ACCUMULO-2938
>             Project: Accumulo
>          Issue Type: Bug
>          Components: master, tserver
>            Reporter: Josh Elser
>            Priority: Critical
>
> The KeyExtent class identifies a Tablet in Accumulo. Of interest to this issue, KeyExtent may contain the endRow of the Tablet and/or the endRow of the previous Tablet (or neither).
> If we log the extent, we have the potential to be leaking some data that might need to be protected (visibilities, encryption) to a medium only protected by filesystem restrictions.
> This may be difficult since the extent is included in things like MinC and MajC log messages and can be helpful when diagnosing problems on the system. Can we abstract away what might be potentially sensitive data in some way that we still provide useful data for debugging purposes?



--
This message was sent by Atlassian Jira
(v8.3.4#803005)