You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@lucene.apache.org by bu...@apache.org on 2019/08/14 07:41:47 UTC
svn commit: r1048610 - in /websites/staging/lucene/trunk/content: ./ solr/news.html

Author: buildbot
Date: Wed Aug 14 07:41:47 2019
New Revision: 1048610

Log:
Staging update by buildbot for lucene

Modified:
    websites/staging/lucene/trunk/content/   (props changed)
    websites/staging/lucene/trunk/content/solr/news.html

Propchange: websites/staging/lucene/trunk/content/
------------------------------------------------------------------------------
--- cms:source-revision (original)
+++ cms:source-revision Wed Aug 14 07:41:47 2019
@@ -1 +1 @@
-1863825
+1865091

Modified: websites/staging/lucene/trunk/content/solr/news.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/news.html (original)
+++ websites/staging/lucene/trunk/content/solr/news.html Wed Aug 14 07:41:47 2019
@@ -195,6 +195,34 @@
 }
 h2:hover > .headerlink, h3:hover > .headerlink, h1:hover > .headerlink, h6:hover > .headerlink, h4:hover > .headerlink, h5:hover > .headerlink, dt:hover > .elementid-permalink { visibility: visible }</style>
 <h1 id="solr-news">Solr<sup>&trade;</sup> News<a class="headerlink" href="#solr-news" title="Permanent link">&para;</a></h1>
+<h2 id="14-august-2019-announce-811-and-820-users-check-enable_remote_jmx_opts-setting">14 August 2019, [ANNOUNCE] 8.1.1 and 8.2.0 users check ENABLE_REMOTE_JMX_OPTS setting<a class="headerlink" href="#14-august-2019-announce-811-and-820-users-check-enable_remote_jmx_opts-setting" title="Permanent link">&para;</a></h2>
+<div class="codehilite"><pre><span class="n">Severity</span><span class="o">:</span> <span class="n">Low</span>
+
+<span class="n">Versions</span> <span class="n">Affected</span><span class="o">:</span>
+<span class="mf">8.1</span><span class="o">.</span><span class="mi">1</span> <span class="n">and</span> <span class="mf">8.2</span><span class="o">.</span><span class="mi">0</span> <span class="k">for</span> <span class="n">Linux</span>
+
+<span class="n">Description</span><span class="o">:</span>
+<span class="n">It</span> <span class="n">has</span> <span class="n">been</span> <span class="n">discovered</span> <span class="o">[</span><span class="mi">1</span><span class="o">]</span> <span class="n">that</span> <span class="n">the</span> <span class="mf">8.1</span><span class="o">.</span><span class="mi">1</span> <span class="n">and</span> <span class="mf">8.2</span><span class="o">.</span><span class="mi">0</span> <span class="n">releases</span> <span class="n">contain</span> <span class="n">a</span> <span class="n">bad</span> <span class="k">default</span> 
+<span class="n">setting</span> <span class="k">for</span> <span class="n">the</span> <span class="n">ENABLE_REMOTE_JMX_OPTS</span> <span class="n">setting</span> <span class="k">in</span> <span class="n">the</span> <span class="k">default</span> <span class="n">solr</span><span class="o">.</span><span class="na">in</span><span class="o">.</span><span class="na">sh</span> <span class="n">file</span>
+<span class="n">shipping</span> <span class="k">with</span> <span class="n">Solr</span><span class="o">.</span>
+
+<span class="n">Windows</span> <span class="n">users</span> <span class="n">and</span> <span class="n">users</span> <span class="k">with</span> <span class="n">custom</span> <span class="n">solr</span><span class="o">.</span><span class="na">in</span><span class="o">.</span><span class="na">sh</span> <span class="n">files</span> <span class="n">are</span> <span class="n">not</span> <span class="n">affected</span><span class="o">.</span>
+
+<span class="n">If</span> <span class="n">you</span> <span class="n">are</span> <span class="n">using</span> <span class="n">the</span> <span class="k">default</span> <span class="n">solr</span><span class="o">.</span><span class="na">in</span><span class="o">.</span><span class="na">sh</span> <span class="n">file</span> <span class="n">from</span> <span class="n">the</span> <span class="n">affected</span> <span class="n">releases</span><span class="o">,</span> <span class="n">then</span>
+<span class="n">JMX</span> <span class="n">monitoring</span> <span class="n">will</span> <span class="n">be</span> <span class="n">enabled</span> <span class="n">and</span> <span class="n">exposed</span> <span class="n">on</span> <span class="n">JMX_PORT</span> <span class="o">(</span><span class="k">default</span> <span class="o">=</span> <span class="mi">18983</span><span class="o">),</span>
+<span class="n">without</span> <span class="n">any</span> <span class="n">authentication</span><span class="o">.</span> <span class="n">So</span> <span class="k">if</span> <span class="n">your</span> <span class="n">firewalls</span> <span class="n">allows</span> <span class="n">inbound</span> <span class="n">traffic</span> <span class="n">on</span> 
+<span class="n">JMX_PORT</span><span class="o">,</span> <span class="n">then</span> <span class="n">anyone</span> <span class="k">with</span> <span class="n">network</span> <span class="n">access</span> <span class="n">to</span> <span class="n">your</span> <span class="n">Solr</span> <span class="n">nodes</span> <span class="n">will</span> <span class="n">be</span> <span class="n">able</span> <span class="n">to</span> 
+<span class="n">access</span> <span class="n">monitoring</span> <span class="n">data</span> <span class="n">exposed</span> <span class="n">over</span> <span class="n">JMX</span><span class="o">.</span>
+
+<span class="n">Mitigation</span><span class="o">:</span>
+<span class="n">Edit</span> <span class="n">solr</span><span class="o">.</span><span class="na">in</span><span class="o">.</span><span class="na">sh</span><span class="o">,</span> <span class="kd">set</span> <span class="n">ENABLE_REMOTE_JMX_OPTS</span><span class="o">=</span><span class="kc">false</span> <span class="n">and</span> <span class="n">restart</span> <span class="n">Solr</span><span class="o">.</span>
+<span class="n">Alternatively</span> <span class="n">wait</span> <span class="k">for</span> <span class="n">the</span> <span class="n">future</span> <span class="mf">8.3</span><span class="o">.</span><span class="mi">0</span> <span class="n">release</span> <span class="n">and</span> <span class="n">upgrade</span><span class="o">.</span>
+
+<span class="n">References</span><span class="o">:</span>
+<span class="o">[</span><span class="mi">1</span><span class="o">]</span> <span class="n">https</span><span class="o">://</span><span class="n">issues</span><span class="o">.</span><span class="na">apache</span><span class="o">.</span><span class="na">org</span><span class="sr">/jira/browse/</span><span class="n">SOLR</span><span class="o">-</span><span class="mi">13647</span>
+</pre></div>
+
+
 <h2 id="26-july-2019-apache-solrtm-820-available">26 July 2019, Apache Solrâ¢ 8.2.0 available<a class="headerlink" href="#26-july-2019-apache-solrtm-820-available" title="Permanent link">&para;</a></h2>
 <p>The Lucene PMC is pleased to announce the release of Apache Solr 8.2.0</p>
 <p>Solr is the popular, blazing fast, open source NoSQL search platform from the Apache Lucene project. Its major features include powerful full-text search, hit highlighting, faceted search, dynamic clustering, database integration, rich document (e.g., Word, PDF) handling, and geospatial search. Solr is highly scalable, providing fault tolerant distributed search and indexing, and powers the search and navigation features of many of the world's largest internet sites.</p>