[ https://issues.apache.org/jira/browse/HIVE-11670?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14975140#comment-14975140 ]
Sushanth Sowmyan commented on HIVE-11670: ----------------------------------------- Note - while this patch was not committed in branch-1.2, in the process of backporting HIVE-9013, this was effectively merged in to the branch-1.2 commit for HIVE-9013 as well. > Strip out password information from TezSessionState configuration > ----------------------------------------------------------------- > > Key: HIVE-11670 > URL: https://issues.apache.org/jira/browse/HIVE-11670 > Project: Hive > Issue Type: Bug > Reporter: Hari Sankar Sivarama Subramaniyan > Assignee: Hari Sankar Sivarama Subramaniyan > Fix For: 1.3.0, 2.0.0 > > Attachments: HIVE-11670.1.patch > > > Remove password information from configuration copy that is sent to Yarn/Tez. > We don't need it there. The config entries can potentially be visible to > other users. > HIVE-10508 had the fix which removed this in certain places, however, when I > initiated a session via Hive Cli, I could still see the password information. -- This message was sent by Atlassian JIRA (v6.3.4#6332)