hadoop-common-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Benoy Antony (JIRA)" <j...@apache.org>
Subject [jira] [Created] (HADOOP-10211) Enable RPC protocol to negotiate SASL-QOP values between client and servers
Date Tue, 07 Jan 2014 20:33:50 GMT
Benoy Antony created HADOOP-10211:
-------------------------------------

             Summary: Enable RPC protocol to negotiate SASL-QOP values between client and
servers
                 Key: HADOOP-10211
                 URL: https://issues.apache.org/jira/browse/HADOOP-10211
             Project: Hadoop Common
          Issue Type: Improvement
          Components: security
    Affects Versions: 2.2.0
            Reporter: Benoy Antony
            Assignee: Benoy Antony


SASL allows different types of protection are referred to as the quality of protection (qop).
It is negotiated between the client and server during the authentication phase of the SASL
exchange. Currently hadoop allows specifying a single QOP value  via hadoop.rpc.protection.

The enhancement enables a user to specify multiple QOP values -  authentication,integrity,
privacy as a comma separated list via hadoop.rpc.protection
The client and server can have different set of values for  hadoop.rpc.protection and they
will negotiate to determine the QOP to be used for communication.



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

Mime
View raw message