risdenk commented on a change in pull request #1082: SOLR-13984: add (experimental, disabled by default) security manager support URL: https://github.com/apache/lucene-solr/pull/1082#discussion_r357999453
########## File path: solr/bin/solr.in.sh ########## @@ -203,3 +203,8 @@ # a -Dsolr.environment property below. Valid values are prod, stage, test, dev, with an optional # label or color, e.g. -Dsolr.environment=test,label=Functional+test,color=brown #SOLR_OPTS="$SOLR_OPTS -Dsolr.environment=prod" + +# Runs solr in java security manager sandbox. This can protect against some attacks. +# Runtime properties are passed to the security policy file (server/etc/security.policy) +# This is experimental! It may not work at all with HDFS. Review comment: > It may not work at all with HDFS. This may not work with any Hadoop related usages. This includes backup/restore to HDFS compatible filesystems (https://lucene.apache.org/solr/guide/8_3/making-and-restoring-backups.html), storing indices on HDFS (https://lucene.apache.org/solr/guide/8_3/running-solr-on-hdfs.html), and Hadoop authentication plugin (https://lucene.apache.org/solr/guide/8_3/hadoop-authentication-plugin.html) ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@lucene.apache.org For additional commands, e-mail: issues-h...@lucene.apache.org
