hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Allen Wittenauer (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-11027) HADOOP_SECURE_COMMAND catch-all
Date Mon, 24 Apr 2017 14:43:04 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-11027?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15981264#comment-15981264
] 

Allen Wittenauer commented on HADOOP-11027:
-------------------------------------------

It's used when user provided functions replace jsvc.  e.g., on Solaris, one could define a
role that allows the datanode to run on a privileged port without actually running as root
just by launching it with pfexec.  It's also possible to use this to launch the datanode via
sudo such that you don't actually need to be root to use jsvc.  In all these cases, the system
needs to do things differently because jsvc+root aren't being used.

The code has changed quite a bit since I last tested this, so I should probably sit down and
write it up again.


> HADOOP_SECURE_COMMAND catch-all
> -------------------------------
>
>                 Key: HADOOP-11027
>                 URL: https://issues.apache.org/jira/browse/HADOOP-11027
>             Project: Hadoop Common
>          Issue Type: Bug
>            Reporter: Allen Wittenauer
>            Assignee: Andras Bokor
>            Priority: Critical
>
> Enabling HADOOP_SECURE_COMMAND to override jsvc doesn't work.  Here's a list of issues!



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org


Mime
View raw message