hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Owen O'Malley (JIRA)" <j...@apache.org>
Subject [jira] Commented: (HADOOP-6127) The real user name should be used by bin/hadoop fs (ie. FsShell) instead of the one in the configuration.
Date Mon, 06 Jul 2009 17:45:14 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-6127?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12727637#action_12727637
] 

Owen O'Malley commented on HADOOP-6127:
---------------------------------------

This isn't about making it secure. It is just about removing the ability to spoof from the
command line interface to Hadoop. Even after this change, it is still easy to spoof without
getting to LD_PRELOAD. Of course to get to real security, you need authentication via Kerberos
or something similar.

> The real user name should be used by bin/hadoop fs (ie. FsShell) instead of the one in
the configuration.
> ---------------------------------------------------------------------------------------------------------
>
>                 Key: HADOOP-6127
>                 URL: https://issues.apache.org/jira/browse/HADOOP-6127
>             Project: Hadoop Common
>          Issue Type: Bug
>          Components: fs
>            Reporter: Owen O'Malley
>
> The real user name should be used by FsShell instead of the one in the configuration.
This will make it a tiny bit harder for someone to pretend to be someone else to the file
system.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message