[DISCUSS] Timezone Configuration and "Run batch"

Wed, 08 Feb 2023 22:57:13 -0800 

 Dear:

Wechat group "Apache Linkis(incubating)  community Development group "chat 
records are as follows:  微信群"Apache Linkis(incubating)  社区开发群"的聊天记录如下:




—————  2023-2-8  —————

He Defang 14:29

何德芳  14:29




Have you ever met this kind of situation?各位大佬,有遇到过这种情况吗? Using azkaban for 
scheduling, the scheduling time will be one day late. I check that the timezone 
configuration is correct, and there is a "run batch time" that is always one 
day late

用azkaban做调度,调度时间会晚一天,我检查timezone配置是正确的,有个“跑批时间” 永远晚一天







peacewong@WDS  14:30

peacewong@WDS  14:30




This is because security loopholes do control ha, these will lead to security 
problems

这个是因为安全漏洞做的控制哈,这几个会导致安全问题







peacewong@WDS  14:31

peacewong@WDS  14:31




You can turn this on with configuration parameters

可以通过配置参数开启这个的







Mr. Flash 14:32

闪电先生  14:32




@peacewong@WDS What parameters are not seen to have said

@peacewong@WDS 是什么参数 没有看到有说







She said 14:34

她說  14:34




@peacewong@WDS This is only the parameter of the following concatenation, I 
mean that the verification fails without concatenation database

@peacewong@WDS 这个只是后面拼接的参数吧,我意思是不拼接数据库 就验证不通过







She said 14:34

她說  14:34




JDBC: mysql: / / 127.0.0.1:3306?jdbc:mysql://127.0.0.1:3306?   JDBC: mysql: / / 
127.0.0.1:3306 / hive?

jdbc:mysql://127.0.0.1:3306/hive?







peacewong@WDS  14:44

peacewong@WDS  14:44




allowLoadLocalInfile=false&autoDeserialize=false&allowLocalInfile=false&allowUrlInLocalInfile=false

漏洞里面有的,具体是这几个:allowLoadLocalInfile=false&autoDeserialize=false&allowLocalInfile=false&allowUrlInLocalInfile=false







peacewong@WDS  14:44

peacewong@WDS  14:44




@Tinder of tinder

@陌悉之陌 







She said 14:45

她說  14:45




Yes, I saw active splicing of these

是的 我看主动拼接这几个了







Mr. Flash 14:45

闪电先生  14:45




Custom character sets should be allowed

应该允许自定义字符集一类的







Mr. Flash 14:45

闪电先生  14:45




That doesn't seem to be allowed now

现在貌似不允许







She said 14:46

她說  14:46




JDBC_MATCH_REGEX = "JDBC: \ \ w + : / / \ \ S + : [0-9] {2, 6} (/ \ \ S 
*)?"JDBC_MATCH_REGEX = "jdbc:\\w+://\\S+:[0-9]{2,6}(/\\S*)?" ;;  There's 
something wrong with this rule就是这个正则有问题吧



















--

Best Regards
------
康悦 ritakang 
GitHub:Ritakang0451
E-mail:rita0...@163.com

Reply via email to