You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-dev@hadoop.apache.org by "Haibo Chen (JIRA)" <ji...@apache.org> on 2016/06/20 22:19:58 UTC

[jira] [Created] (HADOOP-13299) JMXJsonServlet is vulnerable to TRACE

Haibo Chen created HADOOP-13299:
-----------------------------------

             Summary: JMXJsonServlet is vulnerable to TRACE 
                 Key: HADOOP-13299
                 URL: https://issues.apache.org/jira/browse/HADOOP-13299
             Project: Hadoop Common
          Issue Type: Bug
            Reporter: Haibo Chen
            Assignee: Haibo Chen
            Priority: Minor


Nessus scan shows that JMXJsonServlet is vulnerable to TRACE/TRACK requests.  We could disable this to avoid such vulnerability.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-dev-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-dev-help@hadoop.apache.org