hadoop-hdfs-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Owen O'Malley (JIRA)" <j...@apache.org>
Subject [jira] Commented: (HDFS-1113) Allow users with write access to a directory to change ownership of its subdirectories/files
Date Thu, 29 Apr 2010 13:41:00 GMT

    [ https://issues.apache.org/jira/browse/HDFS-1113?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12862197#action_12862197
] 

Owen O'Malley commented on HDFS-1113:
-------------------------------------

Making the file owner in to a user settable string is a huge cost to security. Making the
users scan the audit log from the beginning of time to find the creator of a file isn't a
great answer.

Isn't the motivation really that you want to control access to the file? It seems like ACL's
really answer your request (and many additional ones).

> Allow users with write access to a directory to change ownership of its subdirectories/files
> --------------------------------------------------------------------------------------------
>
>                 Key: HDFS-1113
>                 URL: https://issues.apache.org/jira/browse/HDFS-1113
>             Project: Hadoop HDFS
>          Issue Type: New Feature
>          Components: name-node
>         Environment: All
>            Reporter: Milind Bhandarkar
>            Assignee: Sanjay Radia
>
> owner and group of a file/directory, and namespace/diskspace quota for a directory are
mutable attributes. If I have writable access to a directory, say /team/MyTeam, and if there
are subdirectories underneath, such as /team/MyTeam/TeamMember1, /team/MyTeam/TeamMember2,
then I should be able to chown, chgrp, setQuota, clrQuota on TeamMemeber{1|2} subdirectories.
Currently in HDFS (and in Posix), it requires me to be a superuser to perform these operations.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message