Editable File Log File Permissions
Hello All, We would like to hear the communities thoughts on being able to configure the permissions log files are created with. We don't want to rely on UMASK because we have managed services who's process should generate logs with a 644 yet deployed applications by users should default to a 640 because the logs may contain sensitive information. We are able to make the modification and set this in the properties file. Now we are looking to see what the community position would be on accepting such a patch, we don't want to be patching our own distribution. I searched all the JIRAs and was not able to find any matching requirements recently. All I could find was something dated in 2006: https://bz.apache.org/bugzilla/show_bug.cgi?id=40407 Thank you.
Re: Editable File Log File Permissions
Hi Gary, We are using Log4j2, I thought to take it to the mail list before a opening a JIRA. I will open a JIRA for this. Thank you , On Friday, November 11, 2016, Gary Gregory wrote: > Which version of Log4j are you using? > > Bugzilla is no longer used and we no longer support adding to Log4j 1. > > For Log4j 2 patches and requests, please use Jira. > > Thank you, > Gary > > On Nov 11, 2016 8:18 PM, "Demetrios Dimatos" > wrote: > > > Hello All, > > We would like to hear the communities thoughts on being able to configure > > the permissions log files are created with. We don't want to rely on > UMASK > > because we have managed services who's process should generate logs with > a > > 644 yet deployed applications by users should default to a 640 because > the > > logs may contain sensitive information. > > > > We are able to make the modification and set this in the properties file. > > Now we are looking to see what the community position would be on > accepting > > such a patch, we don't want to be patching our own distribution. > > > > I searched all the JIRAs and was not able to find any matching > requirements > > recently. All I could find was something dated in 2006: > > https://bz.apache.org/bugzilla/show_bug.cgi?id=40407 > > > > Thank you. > > >
Re: Editable File Log File Permissions
Will do, needs some more work but looking to see if the community would accept seeing as they rejected a similar proposal long back. Opening a JIRA - Question now. Thanks. On Fri, Nov 11, 2016 at 9:13 PM, Gary Gregory wrote: > Oh, and make sure you base your patch on the git master branch. > > Gary > > On Nov 11, 2016 9:12 PM, "Gary Gregory" wrote: > > > Ok, cool. > > > > Gary > > > > On Nov 11, 2016 9:10 PM, "Demetrios Dimatos" wrote: > > > >> Hi Gary, > >> We are using Log4j2, I thought to take it to the mail list before a > >> opening > >> a JIRA. I will open a JIRA for this. > >> Thank you , > >> > >> On Friday, November 11, 2016, Gary Gregory > >> wrote: > >> > >> > Which version of Log4j are you using? > >> > > >> > Bugzilla is no longer used and we no longer support adding to Log4j 1. > >> > > >> > For Log4j 2 patches and requests, please use Jira. > >> > > >> > Thank you, > >> > Gary > >> > > >> > On Nov 11, 2016 8:18 PM, "Demetrios Dimatos" >> > > wrote: > >> > > >> > > Hello All, > >> > > We would like to hear the communities thoughts on being able to > >> configure > >> > > the permissions log files are created with. We don't want to rely on > >> > UMASK > >> > > because we have managed services who's process should generate logs > >> with > >> > a > >> > > 644 yet deployed applications by users should default to a 640 > because > >> > the > >> > > logs may contain sensitive information. > >> > > > >> > > We are able to make the modification and set this in the properties > >> file. > >> > > Now we are looking to see what the community position would be on > >> > accepting > >> > > such a patch, we don't want to be patching our own distribution. > >> > > > >> > > I searched all the JIRAs and was not able to find any matching > >> > requirements > >> > > recently. All I could find was something dated in 2006: > >> > > https://bz.apache.org/bugzilla/show_bug.cgi?id=40407 > >> > > > >> > > Thank you. > >> > > > >> > > >> > > >
Re: Editable File Log File Permissions
Our needs don't really go beyond file permissions, setting each Owner, Group, Other , but I would say if we go this far that we also be able to set the owner and the group for a file. If this is something you have run across before and think it could benefit with something more than what our needs are, I don't think its a problem, we are pretty flexible. On Fri, Nov 11, 2016 at 9:43 PM, Gary Gregory wrote: > What do you plan beyond supporting > https://docs.oracle.com/javase/7/docs/api/java/nio/file/attribute/ > PosixFilePermission.html > > ? > > Gary > > On Fri, Nov 11, 2016 at 9:24 PM, Demetrios Dimatos > wrote: > > > Will do, needs some more work but looking to see if the community would > > accept seeing as they rejected a similar proposal long back. Opening a > JIRA > > - Question now. Thanks. > > > > On Fri, Nov 11, 2016 at 9:13 PM, Gary Gregory > > wrote: > > > > > Oh, and make sure you base your patch on the git master branch. > > > > > > Gary > > > > > > On Nov 11, 2016 9:12 PM, "Gary Gregory" > wrote: > > > > > > > Ok, cool. > > > > > > > > Gary > > > > > > > > On Nov 11, 2016 9:10 PM, "Demetrios Dimatos" > > wrote: > > > > > > > >> Hi Gary, > > > >> We are using Log4j2, I thought to take it to the mail list before a > > > >> opening > > > >> a JIRA. I will open a JIRA for this. > > > >> Thank you , > > > >> > > > >> On Friday, November 11, 2016, Gary Gregory > > > >> wrote: > > > >> > > > >> > Which version of Log4j are you using? > > > >> > > > > >> > Bugzilla is no longer used and we no longer support adding to > Log4j > > 1. > > > >> > > > > >> > For Log4j 2 patches and requests, please use Jira. > > > >> > > > > >> > Thank you, > > > >> > Gary > > > >> > > > > >> > On Nov 11, 2016 8:18 PM, "Demetrios Dimatos" > > >> > > wrote: > > > >> > > > > >> > > Hello All, > > > >> > > We would like to hear the communities thoughts on being able to > > > >> configure > > > >> > > the permissions log files are created with. We don't want to > rely > > on > > > >> > UMASK > > > >> > > because we have managed services who's process should generate > > logs > > > >> with > > > >> > a > > > >> > > 644 yet deployed applications by users should default to a 640 > > > because > > > >> > the > > > >> > > logs may contain sensitive information. > > > >> > > > > > >> > > We are able to make the modification and set this in the > > properties > > > >> file. > > > >> > > Now we are looking to see what the community position would be > on > > > >> > accepting > > > >> > > such a patch, we don't want to be patching our own distribution. > > > >> > > > > > >> > > I searched all the JIRAs and was not able to find any matching > > > >> > requirements > > > >> > > recently. All I could find was something dated in 2006: > > > >> > > https://bz.apache.org/bugzilla/show_bug.cgi?id=40407 > > > >> > > > > > >> > > Thank you. > > > >> > > > > > >> > > > > >> > > > > > > > > > > > > > -- > E-Mail: garydgreg...@gmail.com | ggreg...@apache.org > Java Persistence with Hibernate, Second Edition > <https://www.amazon.com/gp/product/1617290459/ref=as_li_ > tl?ie=UTF8&camp=1789&creative=9325&creativeASIN=1617290459& > linkCode=as2&tag=garygregory-20&linkId=cadb800f39946ec62ea2b1af9fe6a2b8> > > <http:ir-na.amazon-adsystem.com/e/ir?t=garygregory-20&l=am2&o=1&a= > 1617290459> > JUnit in Action, Second Edition > <https://www.amazon.com/gp/product/1935182021/ref=as_li_ > tl?ie=UTF8&camp=1789&creative=9325&creativeASIN=1935182021& > linkCode=as2&tag=garygregory-20&linkId=31ecd1f6b6d1eaf8886ac902a24de418%22 > > > > <http:ir-na.amazon-adsystem.com/e/ir?t=garygregory-20&l=am2&o=1&a= > 1935182021> > Spring Batch in Action > <https://www.amazon.com/gp/product/1935182951/ref=as_li_ > tl?ie=UTF8&camp=1789&creative=9325&creativeASIN=1935182951& > linkCode=%7B%7BlinkCode%7D%7D&tag=garygregory-20&linkId=%7B% > 7Blink_id%7D%7D%22%3ESpring+Batch+in+Action> > <http:ir-na.amazon-adsystem.com/e/ir?t=garygregory-20&l=am2&o=1&a= > 1935182951> > Blog: http://garygregory.wordpress.com > Home: http://garygregory.com/ > Tweet! http://twitter.com/GaryGregory >
Re: Editable File Log File Permissions
Ok great , now I have to get buy in to have all the Hadoop components to move to log4j2. I will keep you posted, thanks for the speedy replies . On Friday, November 11, 2016, Gary Gregory wrote: > On Fri, Nov 11, 2016 at 10:47 PM, Demetrios Dimatos > > wrote: > > > Our needs don't really go beyond file permissions, setting each Owner, > > Group, Other , but I would say if we go this far that we also be able to > > set the owner and the group for a file. > > > > If this is something you have run across before and think it could > benefit > > with something more than what our needs are, I don't think its a problem, > > we are pretty flexible. > > > > I've never needed that. It seems pretty simple to implement. Give it a go > :-) > > Gary > > > > > On Fri, Nov 11, 2016 at 9:43 PM, Gary Gregory > > > wrote: > > > > > What do you plan beyond supporting > > > https://docs.oracle.com/javase/7/docs/api/java/nio/file/attribute/ > > > PosixFilePermission.html > > > > > > ? > > > > > > Gary > > > > > > On Fri, Nov 11, 2016 at 9:24 PM, Demetrios Dimatos > > > > wrote: > > > > > > > Will do, needs some more work but looking to see if the community > would > > > > accept seeing as they rejected a similar proposal long back. Opening > a > > > JIRA > > > > - Question now. Thanks. > > > > > > > > On Fri, Nov 11, 2016 at 9:13 PM, Gary Gregory < > garydgreg...@gmail.com > > > > > wrote: > > > > > > > > > Oh, and make sure you base your patch on the git master branch. > > > > > > > > > > Gary > > > > > > > > > > On Nov 11, 2016 9:12 PM, "Gary Gregory" > > > > wrote: > > > > > > > > > > > Ok, cool. > > > > > > > > > > > > Gary > > > > > > > > > > > > On Nov 11, 2016 9:10 PM, "Demetrios Dimatos" > > > > > wrote: > > > > > > > > > > > >> Hi Gary, > > > > > >> We are using Log4j2, I thought to take it to the mail list > before > > a > > > > > >> opening > > > > > >> a JIRA. I will open a JIRA for this. > > > > > >> Thank you , > > > > > >> > > > > > >> On Friday, November 11, 2016, Gary Gregory < > > garydgreg...@gmail.com > > > > > > >> wrote: > > > > > >> > > > > > >> > Which version of Log4j are you using? > > > > > >> > > > > > > >> > Bugzilla is no longer used and we no longer support adding to > > > Log4j > > > > 1. > > > > > >> > > > > > > >> > For Log4j 2 patches and requests, please use Jira. > > > > > >> > > > > > > >> > Thank you, > > > > > >> > Gary > > > > > >> > > > > > > >> > On Nov 11, 2016 8:18 PM, "Demetrios Dimatos" < > dima...@gmail.com > > > > > >> > > wrote: > > > > > >> > > > > > > >> > > Hello All, > > > > > >> > > We would like to hear the communities thoughts on being able > > to > > > > > >> configure > > > > > >> > > the permissions log files are created with. We don't want to > > > rely > > > > on > > > > > >> > UMASK > > > > > >> > > because we have managed services who's process should > generate > > > > logs > > > > > >> with > > > > > >> > a > > > > > >> > > 644 yet deployed applications by users should default to a > 640 > > > > > because > > > > > >> > the > > > > > >> > > logs may contain sensitive information. > > > > > >> > > > > > > > >> > > We are able to make the modification and set this in the > > > > properties > > > > > >> file. > > > > > >> > > Now we are looking to see what the community position would > be > > > on > > > > > >> > accepting > > > > > >> > > such a
Re: Editable File Log File Permissions
I am trying to make my way to commiter , I'm the technical lead for HDFS, MapRed, Yarn; 6 of us on the team. I took this requirement from our cloud team but I have doubts about our April time frame . We would have to change quite a bit of Hadoop code, looks like it's no small task https://issues.apache.org/jira/browse/HADOOP-12956 I have a back up plan which is to contribute my ambari log search prototype that allows for grouping service logs for download over their current single component-node painful navigation . I will keep it in mind , I appreciate the offer. Btw I see you work for rocket , I used to work with a bunch of rocketeers when I was doing full stack for IBM:) On Friday, November 11, 2016, Gary Gregory wrote: > I just migrated HttpComponents to Log4j2, it's pretty simple. Let me know > if need help. Are you a Hadoop committer? > > Gary > > On Fri, Nov 11, 2016 at 11:06 PM, Demetrios Dimatos > > wrote: > > > Ok great , now I have to get buy in to have all the Hadoop components to > > move to log4j2. I will keep you posted, thanks for the speedy replies . > > > > On Friday, November 11, 2016, Gary Gregory > wrote: > > > > > On Fri, Nov 11, 2016 at 10:47 PM, Demetrios Dimatos > > > > > > > wrote: > > > > > > > Our needs don't really go beyond file permissions, setting each > Owner, > > > > Group, Other , but I would say if we go this far that we also be able > > to > > > > set the owner and the group for a file. > > > > > > > > If this is something you have run across before and think it could > > > benefit > > > > with something more than what our needs are, I don't think its a > > problem, > > > > we are pretty flexible. > > > > > > > > > > I've never needed that. It seems pretty simple to implement. Give it a > go > > > :-) > > > > > > Gary > > > > > > > > > > > On Fri, Nov 11, 2016 at 9:43 PM, Gary Gregory < > garydgreg...@gmail.com > > > > > > > > wrote: > > > > > > > > > What do you plan beyond supporting > > > > > https://docs.oracle.com/javase/7/docs/api/java/nio/file/attribute/ > > > > > PosixFilePermission.html > > > > > > > > > > ? > > > > > > > > > > Gary > > > > > > > > > > On Fri, Nov 11, 2016 at 9:24 PM, Demetrios Dimatos < > > dima...@gmail.com > > > > > > > > > wrote: > > > > > > > > > > > Will do, needs some more work but looking to see if the community > > > would > > > > > > accept seeing as they rejected a similar proposal long back. > > Opening > > > a > > > > > JIRA > > > > > > - Question now. Thanks. > > > > > > > > > > > > On Fri, Nov 11, 2016 at 9:13 PM, Gary Gregory < > > > garydgreg...@gmail.com > > > > > > > wrote: > > > > > > > > > > > > > Oh, and make sure you base your patch on the git master branch. > > > > > > > > > > > > > > Gary > > > > > > > > > > > > > > On Nov 11, 2016 9:12 PM, "Gary Gregory" < > garydgreg...@gmail.com > > > > > > > > > wrote: > > > > > > > > > > > > > > > Ok, cool. > > > > > > > > > > > > > > > > Gary > > > > > > > > > > > > > > > > On Nov 11, 2016 9:10 PM, "Demetrios Dimatos" < > > dima...@gmail.com > > > > > > > > > > wrote: > > > > > > > > > > > > > > > >> Hi Gary, > > > > > > > >> We are using Log4j2, I thought to take it to the mail list > > > before > > > > a > > > > > > > >> opening > > > > > > > >> a JIRA. I will open a JIRA for this. > > > > > > > >> Thank you , > > > > > > > >> > > > > > > > >> On Friday, November 11, 2016, Gary Gregory < > > > > garydgreg...@gmail.com > > > > > > > > >> wrote: > > > > > > > >> > > > > > > > >> > Which version of Log4j are you using? > > > > > > > >> > > > >
