• Prakash Ranade

    ranade

    Prakash Ranade
    Last logged in Jan. 31, 2017
    Joined July 13, 2016
  • Groups

Summary Submitter Posted Last Updated
[HUE-5816] Changing default setting as allowed_hosts=['*']
February 9th, 2017, 11:36 p.m.
HUE-5762 [security] Revert default for x-content-type-options option to true
February 1st, 2017, 2:42 a.m.
HUE-5717 [backend] Some operating system incorrectly detect javascript mime-type as text/x-js instead of application/javascript
January 25th, 2017, 2:39 a.m.
HUE-5717 [backend] Some operating system incorrectly detect javascript mime-type as text/x-js instead of application/javascript
January 31st, 2017, 10:35 p.m.
HUE-5700 [security] Reverting X-Content-Type-Options default option from True to False
January 20th, 2017, 11:49 p.m.
HUE-4704 [security] Fixed Arbitrary host header accepted in Hue
December 15th, 2016, 2:08 a.m.
HUE-5325 [core] Revoke S3 access permissions to default group
December 9th, 2016, 8:48 p.m.
HUE-5297 [beeswax] fixing Open redirect vulnerability in on_success_url
November 18th, 2016, 12:38 a.m.
HUE-5278 [security] Support disabling TLSv1.1 and TLSv1
November 14th, 2016, 8:19 p.m.
HUE-5278 [security] Upgrade to pyOpenSSL 16.2 or later
November 14th, 2016, 8:16 p.m.
HUE-5278 [security] Upgrade to pyOpenSSL 16.2 or later to support disabling TLSv1.1 and TLSv1
November 10th, 2016, 3:16 a.m.
HUE-5115 [core] Revert custom job browser connection pooling
November 3rd, 2016, 10:34 p.m.
HUE-5217 [backend] Resolve LGPL copyleft issue - Paramiko
November 4th, 2016, 12:09 a.m.
HUE-5214 [core] Fix ping ponging of job browser API between RM HA servers
November 3rd, 2016, 10:47 p.m.
HUE-5167 [core] Improve SASL error reporting in HUE
November 3rd, 2016, 4:07 a.m.
HUE-5167 [core] Improve SASL error reporting in HUE
October 29th, 2016, 1:24 a.m.
HUE-4873 [security] Deliver csrftoken cookie with "HTTP_ONLY" bit set when HTTPS
September 22nd, 2016, 1:38 a.m.
HUE-4653 [core] Build a HTTP Client pool
October 15th, 2016, 12:49 a.m.
HUE-5042 [core.backend] Unable to kill jobs after Resource Manager failover
October 8th, 2016, 3:50 a.m.
HUE-5095 [backend] Python requests library should put port information in log message
October 14th, 2016, 11:40 p.m.
HUE-4969 [core] fixing Support hive.server2.thrift.sasl.qop="auth-conf"
September 29th, 2016, 12:11 a.m.
HUE-4466 [security] fixing Deliver csrftoken cookie with "secure" bit set when HTTPS
September 15th, 2016, 12:21 a.m.
HUE-4873 [security] Deliver csrftoken cookie with "HTTP_ONLY" bit set when HTTPS
September 21st, 2016, 2:43 a.m.
HUE-4941 [editor] fixed Content Security Policy directive blocks an image when navigating on marker map
September 23rd, 2016, 7:47 p.m.
testing
September 20th, 2016, 11:53 p.m.
HUE-4871 [useradmin] an unprivileged user can enumerate users
September 17th, 2016, 1:56 a.m.
HUE-4891 [useradmin] an unprivileged user can list document items
September 17th, 2016, 1:57 a.m.
HUE-4814 [oozie] fixing oozie job submitter should escape XML params
September 9th, 2016, 2:08 a.m.
HUE-4814 [oozie] XML escape variable names in editor submissions
September 10th, 2016, 3:13 a.m.
HUE-4871 [useradmin] fixing some access control issue on /desktop/api endpoints
September 14th, 2016, 11:16 p.m.
HUE-4774 [backend] Fixing "Failed to contact an active Resource Manager" while running FI tests
September 15th, 2016, 11:17 p.m.
HUE-4872 [useradmin] Fixing Hue silently fails auth for ldap backend if "Create LDAP users on login" is false
September 14th, 2016, 11:30 p.m.
HUE-4774 [backend] Fixing "Failed to contact an active Resource Manager" while running FI tests
September 2nd, 2016, 9:06 p.m.
HUE-4814 [oozie] fixing oozie job submitter should escape XML params
September 9th, 2016, 3:44 a.m.
HUE-4472 [backend] Work around for Isilon Issue
July 30th, 2016, 2:25 a.m.
HUE-4541 [security] fixing Hue job browser - Kerberos mutual authentication error in Hue
August 17th, 2016, 2:09 a.m.
HUE-4739 [jobbrowser] fixed Jobbrowser tests(after resource manager pool) were failing.
August 24th, 2016, 4:42 a.m.
HUE-4498 [security] Fixed Content Security Policy blocks PDF in HBase app
August 18th, 2016, 9:20 p.m.
HUE-4455 [security] secure_content_security_policy breaks the editor and GA
July 28th, 2016, 9:40 p.m.
HUE-4466 [security] deliver csrftoken cookie with secure bit set if possible.
July 28th, 2016, 11:47 p.m.
HUE-4454 [security] Disclosure of Web Server Information
July 28th, 2016, 1:08 a.m.
HUE-4443 [security] Automatically default secure_ssl_redirect to True when HTTPS is setup
July 28th, 2016, 12:02 a.m.
Fixing HUE-4470 [backend] Backporting Security fix from Django to HUE. Fixing avoided creating a session record when loading the session
September 2nd, 2016, 12:34 a.m.
HUE-4777 [backend] Fixing The utils.html.strip_tags function in Django can cause a denial of service
September 2nd, 2016, 11:03 p.m.
HUE-4778 [backend] Fixing the utils.http.is_safe_url function in Django does not properly validate URLs
September 2nd, 2016, 11:27 p.m.
HUE-4787 [editor] Fixing Marker map tiles are not showing up
September 7th, 2016, 9:34 p.m.
HUE-4703 [yarn] fixing alternatively Correct username is not used on hard failover
August 27th, 2016, 12:04 a.m.
Fixing HUE-4765 [security] Hue http_client should use SSL_CIPHER_LIST from conf
September 1st, 2016, 9:21 p.m.
fixing XSS found around a user login, group, first and last name
August 26th, 2016, 9:23 p.m.
fixed HUE-4704 [security] Fixed Arbitrary host header accepted in Hue
August 22nd, 2016, 9:41 p.m.
1 2 > 2 pages 
Loading...