ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Velmurugan Periasamy (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (ARGUS-116) Modify DB permissions for xalogger/xaadmin user accounts
Date Tue, 21 Oct 2014 02:38:33 GMT

     [ https://issues.apache.org/jira/browse/ARGUS-116?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Velmurugan Periasamy updated ARGUS-116:
---------------------------------------
    Summary: Modify DB permissions for xalogger/xaadmin user accounts  (was: Modify DB permissions
for xalogger user account)

> Modify DB permissions for xalogger/xaadmin user accounts
> --------------------------------------------------------
>
>                 Key: ARGUS-116
>                 URL: https://issues.apache.org/jira/browse/ARGUS-116
>             Project: Argus
>          Issue Type: Bug
>            Reporter: Velmurugan Periasamy
>            Assignee: Velmurugan Periasamy
>
> The default permissions granted to the database users appear to be higher than necessary.
The user for the audit log 'xalogger' has full access to all tables in all databases, even
ones not related to xasecure. This could raise concerns in a shared environment. 
> Permissions should be restricted to only allow what is required. xalogger user should
have only insert privileges in only xa_access_audit table. xaadmin user need select privilege
on xa_access_audit table.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message