You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by "Qiang Zhang (JIRA)" <ji...@apache.org> on 2017/03/23 01:03:41 UTC

[jira] [Resolved] (RANGER-1470) The logic of the solr_for_audit_setup installer parsing the properites file is inconsistent with the other installers. It treated these attributes as environment variable. There are security risks in the solr_for_audit_setup installer.

     [ https://issues.apache.org/jira/browse/RANGER-1470?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Qiang Zhang resolved RANGER-1470.
---------------------------------
       Resolution: Fixed
    Fix Version/s: 1.0.0

> The logic of the solr_for_audit_setup installer parsing the properites file is inconsistent with the other installers. It treated these attributes as environment variable. There are security risks in the solr_for_audit_setup installer.
> -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
>
>                 Key: RANGER-1470
>                 URL: https://issues.apache.org/jira/browse/RANGER-1470
>             Project: Ranger
>          Issue Type: Bug
>          Components: admin
>    Affects Versions: 0.7.0, 1.0.0
>            Reporter: peng.jianhua
>            Assignee: peng.jianhua
>              Labels: patch
>             Fix For: 1.0.0
>
>         Attachments: 0001-RANGER-1470-The-logic-of-the-solr_for_audit_setup-in.patch
>
>
> The logic of the solr_for_audit_setup installer parsing the properites file is inconsistent with the other installers. It treated these attributes as environment variable. There are security risks in the solr_for_audit_setup installer.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)