Hello everyone, I have a problem with assigning values from Squid logs to attributes in FlowFile. My process consists of: → ListenTCP (listening to Squid logs), → ReplaceText (deleting a symbol from a given field), → UpdateAttribute (assigning the schema to the log data), → ConvertRecord (data separation and adding columns), → UpdateAttribute (assigning values from columns to attributes in FlowFile). The components listed above are only part of the entire process. At the end of the process, the processed data from the logs should be fed to the Hive database using PutHiveQL. The configurations of the listed components are as follows. With this configuration, Content is correct, but in the Attributes tab, the attribute name is "Empty string set" and "No value set". System attributes such as filename, path or record.count have valid values. ... View more

Hi guys, using OpenVAS, I performed a vulnerability scan of my CentOS7 server (there is Apache Nifi in version 1.7.1 with 8081 port). I obtained the following report: High (CVSS: 10.0) NVT: Eclipse Jetty Server InvalidPathException Information Disclosure Vulnerability Product detection result cpe:/a:eclipse:jetty:6.1.26. Detected by Jetty Version Detection (OID: 1.3.6.1.4.1.25623.1.0.800953) Summary The host is installed with Eclipse Jetty Server and is prone to information disclosure vulnerability. Vulnerability Detection Result Installed version: 9.4.3.20170317 Fixed version: 9.4.11.v20180605 Installation path / port: 8081/tcp Impact Successful exploitation will allow an attacker to disclose sensitive information. Impact Level: Application Solution Solution type: VendorFix Upgrade to Eclipse Jetty Server version 9.3.24.v20180605 or 9.4.11.v20180605 or later as per the series. For updates refer to Reference links. Affected Software/OS Eclipse Jetty Server versions 9.2.x, 9.3.x before 9.3.24.v20180605 and 9.4.x before 9.4.11.v20180605 Vulnerability Insight The flaw exists due to an improper handling of bad queries. Vulnerability Detection Method Get the installed version with the help of detect NVT and check the version is vulnerable or not. Details:Eclipse Jetty Server InvalidPathException Information Disclosure Vulnerability OID:1.3.6.1.4.1.25623.1.0.813552 Version used: $Revision: 10443 $ Product Detection Result Product: cpe:/a:eclipse:jetty:6.1.26. Method: Jetty Version Detection OID: 1.3.6.1.4.1.25623.1.0.800953) References CVE: CVE-2018-12536 Other: URL:https://bugs.eclipse.org/bugs/show_bug.cgi?id=535670 URL:https://www.eclipse.org/jetty/ [..] solution: Upgrade to Eclipse Jetty Server version 9.3.24.v20180605 or 9.4.11.v20180605 or later.. Unfortunately, I could not find a solution to the problem regarding upgrade Eclipse Jetty Server for Apache Nifi. Has anyone had a similar problem? The case is fresh. ... View more