cassandra-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Clément Lardeur (JIRA) <>
Subject [jira] [Commented] (CASSANDRA-6660) Make node tool command take a password file
Date Tue, 18 Feb 2014 19:52:20 GMT


Clément Lardeur commented on CASSANDRA-6660:

| +1 on Brandon comment and also this JIRA requires a file. You might want to add an option
to pass a file and read from it.

You can pass a path to the password file with the v2 patch.

| Also you might want to add imports explicitly.

I prefer to add static imports to improve the readibility of the code.

> Make node tool command take a password file
> -------------------------------------------
>                 Key: CASSANDRA-6660
>                 URL:
>             Project: Cassandra
>          Issue Type: Improvement
>            Reporter: Vishy Kasar
>            Assignee: Clément Lardeur
>            Priority: Trivial
>              Labels: nodetool
>             Fix For: 2.1
>         Attachments: trunk-6660-v1.patch, trunk-6660-v2.patch
> We are sending the jmx password in the clear to the node tool command in production.
This is a security risk. Any one doing a 'ps' can see the clear password. Can we change the
node tool command to also take a password file argument. This file will list the JMX user
and passwords. Example below:
> cat /cassandra/run/10003004.jmxpasswd
> monitorRole abc
> controlRole def
> Based on the user name provided, node tool can pick up the right password. 

This message was sent by Atlassian JIRA

View raw message