[
https://issues.apache.org/jira/browse/SOLR-13986?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16985481#comment-16985481
]
Robert Muir commented on SOLR-13986:
------------------------------------
With the attached patch (containing numerous ugly hadoop hacks), all tests pass.
Basically the hacks still allow hadoop to do its crazy process execution in the
specific places that are needed for it to work.
> remove "execute" permission from solr-tests.policy
> --------------------------------------------------
>
> Key: SOLR-13986
> URL: https://issues.apache.org/jira/browse/SOLR-13986
> Project: Solr
> Issue Type: Improvement
> Security Level: Public(Default Security Level. Issues are Public)
> Reporter: Robert Muir
> Priority: Major
> Attachments: SOLR-13986-notyet.patch, SOLR-13986.patch,
> SOLR-13986.patch, SOLR-13986.patch
>
>
> If we don't really need to execute processes, we can take the permission
> away. That way any attempt to execute something results in a
> SecurityException rather than running a process.
> It is necessary to first fix the tests policy before thinking about
> supporting securitymanager in solr. This way we can ensure functionality does
> not break via our tests.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@lucene.apache.org
For additional commands, e-mail: issues-h...@lucene.apache.org
