hadoop-hdfs-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Todd Lipcon (JIRA)" <j...@apache.org>
Subject [jira] Commented: (HDFS-945) Make NameNode resilient to DoS attacks (malicious or otherwise)
Date Wed, 03 Feb 2010 19:25:30 GMT

    [ https://issues.apache.org/jira/browse/HDFS-945?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12829211#action_12829211
] 

Todd Lipcon commented on HDFS-945:
----------------------------------

bq. apps within trusted network that does not need to be paranoid about this

I disagree. It's very easy to write a well-meaning app that does awful things. Certainly the
limits should be configurable, but they should default on and be set at a high enough threshold
that they only trigger in a case where it would make the NN fall over otherwise.

> Make NameNode resilient to DoS attacks (malicious or otherwise)
> ---------------------------------------------------------------
>
>                 Key: HDFS-945
>                 URL: https://issues.apache.org/jira/browse/HDFS-945
>             Project: Hadoop HDFS
>          Issue Type: Improvement
>          Components: name-node
>            Reporter: Arun C Murthy
>
> We've seen defective applications cause havoc on the NameNode, for e.g. by doing 100k+
'listStatus' on very large directories (60k files) etc.
> I'd like to start a discussion around how we prevent such, and possibly malicious applications
in the future, taking down the NameNode.
> Thoughts?

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message