You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@hive.apache.org by "Thejas M Nair (JIRA)" <ji...@apache.org> on 2015/08/28 00:05:46 UTC

[jira] [Commented] (HIVE-11670) Strip out password information from TezSessionState configuration

    [ https://issues.apache.org/jira/browse/HIVE-11670?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14717618#comment-14717618 ] 

Thejas M Nair commented on HIVE-11670:
--------------------------------------

[~vikram.dixit] Can you please take a look. You know the tez code flow better.

> Strip out password information from TezSessionState configuration
> -----------------------------------------------------------------
>
>                 Key: HIVE-11670
>                 URL: https://issues.apache.org/jira/browse/HIVE-11670
>             Project: Hive
>          Issue Type: Bug
>            Reporter: Hari Sankar Sivarama Subramaniyan
>            Assignee: Hari Sankar Sivarama Subramaniyan
>         Attachments: HIVE-11670.1.patch
>
>
> Remove password information from configuration copy that is sent to Yarn/Tez. We don't need it there. The config entries can potentially be visible to other users.
> HIVE-10508 had the fix which removed this in certain places, however, when I initiated a session via Hive Cli, I could still see the password information.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)