Help Center/
MapReduce Service/
Product Bulletin/
Vulnerability Notice/
MRS Fastjson Vulnerability Remediation Guide/
Remediating Manager Web
Updated on 2024-08-28 GMT+08:00
Remediating Manager Web
Prerequisites
You have obtained the URL and admin account for logging in to FusionInsight Manager.
Procedure
- Log in to the active OMS node as user omm and back up the $OM_TOMCAT_HOME/bin/catalina.sh file.
cp $OM_TOMCAT_HOME/bin/catalina.sh /tmp
- Run the vi $OM_TOMCAT_HOME/bin/catalina.sh command, find the line where Execute The Requested Command is located, and add the following content above the line:
JAVA_OPTS="$JAVA_OPTS -Dfastjson.parser.safeMode=true"
- Run the following commands on the active OMS node as user omm to restart the Manager Web service:
$OMS_RUN_PATH/workspace/ha/module/harm/plugin/script/tomcat stop
$OMS_RUN_PATH/workspace/ha/module/harm/plugin/script/tomcat start
- Run the following command to check the process on the active OMS node:
ps -ef |grep tomcat | grep om-server
If the -Dfastjson.parser.safeMode=true parameter exists, the vulnerability has been mitigated.
- Perform 1 and 2 on the standby OMS node as user omm.
Parent topic: MRS Fastjson Vulnerability Remediation Guide
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
The system is busy. Please try again later.
For any further questions, feel free to contact us through the chatbot.
Chatbot
