[jira] [Commented] (FLINK-5818) change checkpoint dir permission to 700 for security reason

ASF GitHub Bot (JIRA) Thu, 16 Feb 2017 06:14:01 -0800

    [ 
https://issues.apache.org/jira/browse/FLINK-5818?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15869993#comment-15869993
 ]


ASF GitHub Bot commented on FLINK-5818:
---------------------------------------

Github user greghogan commented on the issue:

    https://github.com/apache/flink/pull/3335
  
    @WangTaoTheTonic HDFS supports posix ACLs 
([link](http://hadoop.apache.org/docs/r2.4.1/hadoop-project-dist/hadoop-hdfs/HdfsPermissionsGuide.html#ACLs_Access_Control_Lists)).
 These are per-file/directory and inherited. Does this meet your requirements?


> change checkpoint dir permission to 700 for security reason
> -----------------------------------------------------------
>
>                 Key: FLINK-5818
>                 URL: https://issues.apache.org/jira/browse/FLINK-5818
>             Project: Flink
>          Issue Type: Improvement
>          Components: Security, State Backends, Checkpointing
>            Reporter: Tao Wang
>
> Now checkpoint directory is made w/o specified permission, so it is easy for 
> another user to delete or read files under it, which will cause restore 
> failure or information leak.
> It's better to lower it down to 700.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

[jira] [Commented] (FLINK-5818) change checkpoint dir permission to 700 for security reason

Reply via email to