WARNING: Version 6.2 of Elasticsearch has passed its EOL date.

This documentation is no longer being maintained and may be removed. If you are running this version, we strongly advise you to upgrade. For the latest information, see the current release documentation.

« Breaking changes in 6.1 Private temporary directory »
Elastic Docs Elasticsearch Reference [6.2] Breaking changes

Breaking changes in 6.2

edit

Breaking changes in 6.2

edit

All permission bootstrap check

edit

Elasticsearch installs a security manager during bootstrap to mitigate the scope of exploits in the JDK, in third-party dependencies, and in Elasticsearch itself as well as to sandbox untrusted plugins. A custom security policy can be applied and one permission that can be added to this policy is java.security.AllPermission. However, this effectively disables the security manager. As such, granting this permission in production mode is now forbidden via the all permission bootstrap check.

« Breaking changes in 6.1 Private temporary directory »