Return-Path: Delivered-To: apmail-hadoop-common-issues-archive@minotaur.apache.org Received: (qmail 43585 invoked from network); 11 Aug 2009 05:25:32 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 11 Aug 2009 05:25:32 -0000 Received: (qmail 78654 invoked by uid 500); 11 Aug 2009 05:25:39 -0000 Delivered-To: apmail-hadoop-common-issues-archive@hadoop.apache.org Received: (qmail 78621 invoked by uid 500); 11 Aug 2009 05:25:39 -0000 Mailing-List: contact common-issues-help@hadoop.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: common-issues@hadoop.apache.org Delivered-To: mailing list common-issues@hadoop.apache.org Received: (qmail 78541 invoked by uid 99); 11 Aug 2009 05:25:39 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 11 Aug 2009 05:25:39 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.140] (HELO brutus.apache.org) (140.211.11.140) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 11 Aug 2009 05:25:35 +0000 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id E6237234C1E6 for ; Mon, 10 Aug 2009 22:25:14 -0700 (PDT) Message-ID: <535970231.1249968314941.JavaMail.jira@brutus> Date: Mon, 10 Aug 2009 22:25:14 -0700 (PDT) From: "Pallavi Palleti (JIRA)" To: common-issues@hadoop.apache.org Subject: [jira] Updated: (HADOOP-6187) Allow Super user access only from certian trusted IP Range- This is to avoid spoofing by others as super user and gain access to the cluster In-Reply-To: <275506731.1249968314898.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/HADOOP-6187?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Pallavi Palleti updated HADOOP-6187: ------------------------------------ Priority: Minor (was: Major) > Allow Super user access only from certian trusted IP Range- This is to avoid spoofing by others as super user and gain access to the cluster > -------------------------------------------------------------------------------------------------------------------------------------------- > > Key: HADOOP-6187 > URL: https://issues.apache.org/jira/browse/HADOOP-6187 > Project: Hadoop Common > Issue Type: New Feature > Components: ipc > Affects Versions: 0.20.0 > Reporter: Pallavi Palleti > Priority: Minor > > The current hadoop environment assumes that everything is trusted environment and so doesn't have any security checks. This might lead to any one to spoof as super user and gain access to the cluster if the environment is open for every one. So, there is a need to restrict super user permission only from certain IP addresses. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.