You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by "Madhan Neethiraj (JIRA)" <ji...@apache.org> on 2015/11/05 23:03:27 UTC

[jira] [Resolved] (RANGER-608) Denied access to list a directory does not generate audit

     [ https://issues.apache.org/jira/browse/RANGER-608?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Madhan Neethiraj resolved RANGER-608.
-------------------------------------
       Resolution: Fixed
    Fix Version/s: 0.6.0

[~sneethiraj] thanks for reviewing the patch. I will backport this fix in ranger-0.5 as well.

> Denied access to list a directory does not generate audit
> ---------------------------------------------------------
>
>                 Key: RANGER-608
>                 URL: https://issues.apache.org/jira/browse/RANGER-608
>             Project: Ranger
>          Issue Type: Bug
>          Components: plugins
>    Affects Versions: 0.5.0
>            Reporter: Madhan Neethiraj
>            Assignee: Madhan Neethiraj
>             Fix For: 0.6.0
>
>
> Attempting to list a directory (for example, /demo/data/Customers) on which the user does not have READ and EXECUTE access fails with 'Permission denied' error - as expected. Ranger HDFS plugin generates an audit log for access to HDFS files/directories - irrespective of whether the access is allowed or denied. However, if the user does not have EXECUTE access on the parent directory (for example, /demo/data), no audit log is generated for the denial.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)