Re: Fw: Regarding upgrading of Tomcat [SECURITY] Apache Tomcat Possibleadditional RCE via JSP upload

I am furture testing and evaluating the effect of RANGER-1797 for ranger using our automated integration test environment. Please have a better opinion also feedback to me. Thanks Jianhua Peng 原始邮件 发件人： 收件人： 日 期 ：2017年09月27日 13:57 主 题 ：Fw: Regarding upgrading of Tomcat

[jira] [Updated] (RANGER-1796) Updated masking policy for hive to support for deny/allowException/denyExceptions

[ https://issues.apache.org/jira/browse/RANGER-1796?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] peng.jianhua updated RANGER-1796: - Attachment: masking-03.png > Updated masking policy for hive to support for > deny/allowExcepti

[jira] [Commented] (RANGER-1796) Updated masking policy for hive to support for deny/allowException/denyExceptions

[ https://issues.apache.org/jira/browse/RANGER-1796?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16182080#comment-16182080 ] peng.jianhua commented on RANGER-1796: -- Hi [~madhan.neethiraj], you still use the pr

Fw: Regarding upgrading of Tomcat [SECURITY] Apache Tomcat Possible additional RCE via JSP upload

Hi All,         FYI, Please find below mail from Mark a member of Apache Tomcat security team.          Looks like Tomcat team is working on fixing the CVE issues.          For the same issue RANGER-1797 is created (to upgrade to Tomcat 7.0.81 which also seems to be vulnerable.), can we please ev

[jira] [Commented] (RANGER-1796) Updated masking policy for hive to support for deny/allowException/denyExceptions

[ https://issues.apache.org/jira/browse/RANGER-1796?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16181977#comment-16181977 ] Madhan Neethiraj commented on RANGER-1796: -- bq. the case you mentioned can be h

[jira] [Updated] (RANGER-1748) User is unable to update existing policy while importing policy from file

[ https://issues.apache.org/jira/browse/RANGER-1748?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Pradeep Agrawal updated RANGER-1748: Affects Version/s: 1.0.0 0.7.0 > User is unable to update existing p

[jira] [Updated] (RANGER-1748) User is unable to update existing policy while importing policy from file

[ https://issues.apache.org/jira/browse/RANGER-1748?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Pradeep Agrawal updated RANGER-1748: Fix Version/s: 1.0.0 > User is unable to update existing policy while importing policy from

[jira] [Commented] (RANGER-1748) User is unable to update existing policy while importing policy from file

[ https://issues.apache.org/jira/browse/RANGER-1748?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16181962#comment-16181962 ] Pradeep Agrawal commented on RANGER-1748: - Committed to master branch: https://g

Re: Review Request 62611: RANGER-1748 : User is unable to update existing policy while importing policy from file

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62611/#review186372 --- Ship it! Ship It! - Pradeep Agrawal On Sept. 27, 2017, 4:12

Review Request 62611: RANGER-1748 : User is unable to update existing policy while importing policy from file

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62611/ --- Review request for ranger, Ankita Sinha, Don Bosco Durai, Gautam Borad, Abhay Ku

Re: Review Request 62534: RANGER-1748 : User is unable to update existing policy while importing policy from file

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62534/#review186370 --- Ship it! Ship It! - Pradeep Agrawal On Sept. 27, 2017, 3:52

Re: Review Request 62534: RANGER-1748 : User is unable to update existing policy while importing policy from file

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62534/ --- (Updated Sept. 27, 2017, 3:52 a.m.) Review request for ranger, Ankita Sinha, Do

Re: Build Process Apache Ranger

I'm using openjdk version "1.8.0_131", Apache Maven 3.3.9 and linux ubuntu Thanks. 2017-09-26 15:57 GMT+07.00, Colm O hEigeartaigh : > What JDK and maven versions are you using by the way (and what OS)? > > Colm. > > On Tue, Sep 26, 2017 at 7:39 AM, Ronny Hidayat > wrote: > >> Hi Don Bosco Durai,

[jira] [Updated] (RANGER-1802) Here is a error in getStatusResponse() when post data exception for AtlasClient class

[ https://issues.apache.org/jira/browse/RANGER-1802?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Qiang Zhang updated RANGER-1802: Attachment: (was: 0001-RANGER-1802-Here-is-a-error-in-getStatusResponse-whe.patch) > Here is a

[jira] [Assigned] (RANGER-1802) Here is a error in getStatusResponse() when post data exception for AtlasClient class

[ https://issues.apache.org/jira/browse/RANGER-1802?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] peng.jianhua reassigned RANGER-1802: Assignee: peng.jianhua (was: Qiang Zhang) > Here is a error in getStatusResponse() when p

[jira] [Updated] (RANGER-1802) Here is a error in getStatusResponse() when post data exception for AtlasClient class

[ https://issues.apache.org/jira/browse/RANGER-1802?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] peng.jianhua updated RANGER-1802: - Attachment: 0001-RANGER-1802-Here-is-a-error-in-getStatusResponse-whe.patch > Here is a error in

Re: Review Request 62520: Here is a error in getStatusResponse() when post data exception for AtlasClient class

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62520/ --- (Updated 九月 27, 2017, 1:59 a.m.) Review request for ranger, Alok Lal, Ankita Si

Re: Review Request 62520: Here is a error in getStatusResponse() when post data exception for AtlasClient class

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62520/ --- (Updated 九月 27, 2017, 1:54 a.m.) Review request for ranger, Alok Lal, Ankita Si

Re: Review Request 62520: Here is a error in getStatusResponse() when post data exception for AtlasClient class

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62520/ --- (Updated 九月 27, 2017, 1:49 a.m.) Review request for ranger, Alok Lal, Ankita Si

Re: Review Request 62555: RANGER-1801: group user mapping updates to ranger admin fail when the mapping is already existed in ranger DB

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62555/#review186330 --- Fix it, then Ship it! security-admin/src/main/java/org/apache/

Re: Review Request 62555: RANGER-1801: group user mapping updates to ranger admin fail when the mapping is already existed in ranger DB

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62555/#review186329 --- Ship it! Ship It! - Velmurugan Periasamy On Sept. 26, 2017,

[jira] [Updated] (RANGER-1801) group user mapping updates to ranger admin fail when the mapping is already existed in ranger DB.

[ https://issues.apache.org/jira/browse/RANGER-1801?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Sailaja Polavarapu updated RANGER-1801: --- Attachment: 0001-RANGER-1801-group-user-mapping-updates-to-ranger-adm.patch Attached

[jira] [Comment Edited] (RANGER-1801) group user mapping updates to ranger admin fail when the mapping is already existed in ranger DB.

[ https://issues.apache.org/jira/browse/RANGER-1801?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16181547#comment-16181547 ] Sailaja Polavarapu edited comment on RANGER-1801 at 9/26/17 8:54 PM: --

[jira] [Commented] (RANGER-1801) group user mapping updates to ranger admin fail when the mapping is already existed in ranger DB.

[ https://issues.apache.org/jira/browse/RANGER-1801?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16181547#comment-16181547 ] Sailaja Polavarapu commented on RANGER-1801: Review request available at: htt

Re: Review Request 62555: RANGER-1801: group user mapping updates to ranger admin fail when the mapping is already existed in ranger DB

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62555/ --- (Updated Sept. 26, 2017, 8:35 p.m.) Review request for ranger, Ankita Sinha, Ga

Re: Review Request 62519: RANGER-1800: Usersync fails to update users and groups during incremental sync with nested groups and group first search enabled

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62519/#review186316 --- Ship it! Ship It! - Alejandro Fernandez On Sept. 22, 2017, 1

Re: Review Request 62519: RANGER-1800: Usersync fails to update users and groups during incremental sync with nested groups and group first search enabled

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62519/#review186314 --- Ship it! Ship It! - Velmurugan Periasamy On Sept. 22, 2017,

Re: Review Request 62436: RANGER-1779 : last resource gets duplicated during update policy if policy is created through public api rest call

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62436/#review186294 --- Fix it, then Ship it! security-admin/src/main/java/org/apache/

Re: Review Request 62024: RANGER-1756: Handle role related restrictions for users having User role.

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62024/#review186293 --- Fix it, then Ship it! security-admin/src/main/java/org/apache/

Re: Review Request 62398: From the ease of use point of view, Select / Deselect All and other checkbox should be associated in add/edit permissions pop window.

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62398/#review186292 --- Ship it! Ship It! - Alejandro Fernandez On Sept. 21, 2017, 8

Re: Review Request 62490: Updated masking policy for hive to support for deny/allowException/denyExceptions

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62490/#review186290 --- Ship it! Ship It! - Alejandro Fernandez On Sept. 26, 2017, 7

Re: Review Request 62437: RANGER-1779 : last resource gets duplicated during update policy if policy is created through public api rest call

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62437/ --- (Updated Sept. 26, 2017, 10:03 p.m.) Review request for ranger, Ankita Sinha, D

Re: Review Request 62436: RANGER-1779 : last resource gets duplicated during update policy if policy is created through public api rest call

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62436/ --- (Updated Sept. 26, 2017, 9:57 p.m.) Review request for ranger, Ankita Sinha, Do

Re: Review Request 62538: Good coding practice in Ranger recommended by static code analysis

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62538/#review186271 --- Ship it! Ship It! - Velmurugan Periasamy On Sept. 26, 2017,

Re: Review Request 62024: RANGER-1756: Handle role related restrictions for users having User role.

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62024/#review186269 --- Ship it! Ship It! - Velmurugan Periasamy On Sept. 25, 2017,

Re: Review Request 62538: Good coding practice in Ranger recommended by static code analysis

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62538/ --- (Updated Sept. 26, 2017, 1:39 p.m.) Review request for ranger, Don Bosco Durai,

[jira] [Updated] (RANGER-1806) Good coding practice in Ranger recommended by static code analysis

[ https://issues.apache.org/jira/browse/RANGER-1806?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fatima Amjad Khan updated RANGER-1806: -- Attachment: 0001-RANGER-1806-v1.patch > Good coding practice in Ranger recommended by s

Re: Review Request 62538: Good coding practice in Ranger recommended by static code analysis

> On Sept. 25, 2017, 2:08 p.m., Colm O hEigeartaigh wrote: > > Why not just change the existing for loops to use > > "roleSysAdminMap.entrySet()" instead of adding an Iterator? > > Fatima Khan wrote: > In coverity scan, we had got FB.WMI_WRONG_MAP_ITERATOR issue. To solve > this i used rol

Re: Review Request 62538: Good coding practice in Ranger recommended by static code analysis

> On Sept. 25, 2017, 2:08 p.m., Colm O hEigeartaigh wrote: > > Why not just change the existing for loops to use > > "roleSysAdminMap.entrySet()" instead of adding an Iterator? > > Fatima Khan wrote: > In coverity scan, we had got FB.WMI_WRONG_MAP_ITERATOR issue. To solve > this i used rol

Re: Review Request 62538: Good coding practice in Ranger recommended by static code analysis

> On Sept. 25, 2017, 2:08 p.m., Colm O hEigeartaigh wrote: > > Why not just change the existing for loops to use > > "roleSysAdminMap.entrySet()" instead of adding an Iterator? In coverity scan, we had got FB.WMI_WRONG_MAP_ITERATOR issue. To solve this i used roleSysAdminMap.entrySet(), if we

Re: Review Request 62398: From the ease of use point of view, Select / Deselect All and other checkbox should be associated in add/edit permissions pop window.

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62398/#review186236 --- Ship it! Ship It! - Qiang Zhang On 九月 21, 2017, 8:47 a.m., p

Review Request 62567: RANGER-1727 : Ranger allows user to change an external user's password with 'null' old password

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62567/ --- Review request for ranger, Don Bosco Durai, Gautam Borad, Abhay Kulkarni, Madhan

Re: Review Request 62124: RANGER-1767 - Hive tests fail if Hive is already running on the machine

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62124/#review186234 --- Ship it! Ship It! - Qiang Zhang On 九月 6, 2017, 4:16 p.m., Co

Re: Review Request 62503: RANGER-1799 - Knox Ranger test coverity fixes

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62503/#review186233 --- Ship it! Ship It! - Qiang Zhang On 九月 22, 2017, 11:53 a.m.,

[jira] [Updated] (RANGER-1727) Ranger allows user to change an external user's password with 'null' old password

[ https://issues.apache.org/jira/browse/RANGER-1727?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fatima Amjad Khan updated RANGER-1727: -- Attachment: 0001-RANGER-1727-V1.patch > Ranger allows user to change an external user's

[jira] [Updated] (RANGER-1727) Ranger allows user to change an external user's password with 'null' old password

[ https://issues.apache.org/jira/browse/RANGER-1727?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fatima Amjad Khan updated RANGER-1727: -- Attachment: (was: 0001-RANGER-1727-V1.patch) > Ranger allows user to change an exte

[jira] [Resolved] (RANGER-1803) Json may be analysis a null value at tests[] for test_resourcematcher_default.json

[ https://issues.apache.org/jira/browse/RANGER-1803?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh resolved RANGER-1803. - Resolution: Fixed > Json may be analysis a null value at tests[] for > test_reso

[jira] [Resolved] (RANGER-1804) The exception information is error when judge password for RangerKeyStoreProvider class

[ https://issues.apache.org/jira/browse/RANGER-1804?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh resolved RANGER-1804. - Resolution: Fixed > The exception information is error when judge password for >

[jira] [Updated] (RANGER-1803) Json may be analysis a null value at tests[] for test_resourcematcher_default.json

[ https://issues.apache.org/jira/browse/RANGER-1803?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated RANGER-1803: Fix Version/s: 1.0.0 > Json may be analysis a null value at tests[] for > test_res

[jira] [Updated] (RANGER-1804) The exception information is error when judge password for RangerKeyStoreProvider class

[ https://issues.apache.org/jira/browse/RANGER-1804?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated RANGER-1804: Fix Version/s: 1.0.0 > The exception information is error when judge password for

Re: Review Request 62522: The exception information is error when judge password for RangerKeyStoreProvider class

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62522/#review186231 --- Ship it! Ship It! - Colm O hEigeartaigh On Sept. 26, 2017, 7

Re: Review Request 62521: Json may be analysis a null value at tests[] for test_resourcematcher_default.json

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62521/#review186230 --- Ship it! Ship It! - Colm O hEigeartaigh On Sept. 25, 2017, 7

[jira] [Updated] (RANGER-1727) Ranger allows user to change an external user's password with 'null' old password

[ https://issues.apache.org/jira/browse/RANGER-1727?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Fatima Amjad Khan updated RANGER-1727: -- Attachment: 0001-RANGER-1727-V1.patch > Ranger allows user to change an external user's

[jira] [Created] (RANGER-1810) Ranger supports plugin to enable, monitor and manage apache Sqoop2

Qiang Zhang created RANGER-1810: --- Summary: Ranger supports plugin to enable, monitor and manage apache Sqoop2 Key: RANGER-1810 URL: https://issues.apache.org/jira/browse/RANGER-1810 Project: Ranger

[jira] [Commented] (RANGER-1796) Updated masking policy for hive to support for deny/allowException/denyExceptions

[ https://issues.apache.org/jira/browse/RANGER-1796?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16180513#comment-16180513 ] peng.jianhua commented on RANGER-1796: -- Hi [~madhan.neethiraj], the case you mention

Re: Build Process Apache Ranger

What JDK and maven versions are you using by the way (and what OS)? Colm. On Tue, Sep 26, 2017 at 7:39 AM, Ronny Hidayat wrote: > Hi Don Bosco Durai, > > It work. > > Thank you very much. > > 2017-09-26 10:46 GMT+07.00, Don Bosco Durai : > > You can try with -DskipTests options. > > > > Also, t

[jira] [Updated] (RANGER-1804) The exception information is error when judge password for RangerKeyStoreProvider class

[ https://issues.apache.org/jira/browse/RANGER-1804?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] WangYuan updated RANGER-1804: - Attachment: 0001-RANGER-1804-The-exception-information-is-error-when-.patch > The exception information i

[jira] [Updated] (RANGER-1804) The exception information is error when judge password for RangerKeyStoreProvider class

[ https://issues.apache.org/jira/browse/RANGER-1804?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] WangYuan updated RANGER-1804: - Attachment: (was: 0001-RANGER-1804-The-exception-information-is-error-when-.patch) > The exception i

Re: Review Request 62522: The exception information is error when judge password for RangerKeyStoreProvider class

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62522/ --- (Updated 九月 26, 2017, 7:35 a.m.) Review request for ranger, Alok Lal, Ankita Si

[jira] [Updated] (RANGER-1804) The exception information is error when judge password for RangerKeyStoreProvider class

[ https://issues.apache.org/jira/browse/RANGER-1804?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] WangYuan updated RANGER-1804: - Attachment: 0001-RANGER-1804-The-exception-information-is-error-when-.patch > The exception information i

Re: Review Request 62490: Updated masking policy for hive to support for deny/allowException/denyExceptions

> On 九月 25, 2017, 11:56 a.m., Qiang Zhang wrote: > > The following codes should be modified: > > 1. `if(this.dataMaskPolicyAllowItemExceptions == > > dataMaskPolicyAllowItemExceptions) {` in > > `setDataMaskPolicyAllowItemExceptions(` for RangerPolicy.java > > 2. `if(this.dataMaskPolicyDenyItem

[jira] [Updated] (RANGER-1804) The exception information is error when judge password for RangerKeyStoreProvider class

[ https://issues.apache.org/jira/browse/RANGER-1804?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] WangYuan updated RANGER-1804: - Attachment: (was: 0001-RANGER-1804-The-exception-information-is-error-when-.patch) > The exception i

Re: Review Request 62490: Updated masking policy for hive to support for deny/allowException/denyExceptions

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62490/ --- (Updated 九月 26, 2017, 7:31 a.m.) Review request for ranger, Alok Lal, Ankita Si

Re: Review Request 62522: The exception information is error when judge password for RangerKeyStoreProvider class

--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/62522/ --- (Updated 九月 26, 2017, 7:30 a.m.) Review request for ranger, Alok Lal, Ankita Si