Return-Path: Delivered-To: apmail-hadoop-hdfs-issues-archive@minotaur.apache.org Received: (qmail 21638 invoked from network); 27 Apr 2010 22:09:59 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 27 Apr 2010 22:09:59 -0000 Received: (qmail 69809 invoked by uid 500); 27 Apr 2010 22:09:59 -0000 Delivered-To: apmail-hadoop-hdfs-issues-archive@hadoop.apache.org Received: (qmail 69771 invoked by uid 500); 27 Apr 2010 22:09:59 -0000 Mailing-List: contact hdfs-issues-help@hadoop.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: hdfs-issues@hadoop.apache.org Delivered-To: mailing list hdfs-issues@hadoop.apache.org Received: (qmail 69758 invoked by uid 99); 27 Apr 2010 22:09:59 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 27 Apr 2010 22:09:59 +0000 X-ASF-Spam-Status: No, hits=-1357.2 required=10.0 tests=ALL_TRUSTED,AWL X-Spam-Check-By: apache.org Received: from [140.211.11.22] (HELO thor.apache.org) (140.211.11.22) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 27 Apr 2010 22:09:58 +0000 Received: from thor (localhost [127.0.0.1]) by thor.apache.org (8.13.8+Sun/8.13.8) with ESMTP id o3RM9c9a023191 for ; Tue, 27 Apr 2010 22:09:38 GMT Message-ID: <30931454.44271272406178234.JavaMail.jira@thor> Date: Tue, 27 Apr 2010 18:09:38 -0400 (EDT) From: "Owen O'Malley (JIRA)" To: hdfs-issues@hadoop.apache.org Subject: [jira] Commented: (HDFS-1113) Allow users with write access to a directory to change ownership of its subdirectories/files In-Reply-To: <4142786.41691272402513650.JavaMail.jira@thor> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/HDFS-1113?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12861580#action_12861580 ] Owen O'Malley commented on HDFS-1113: ------------------------------------- chown *must* require admin privs, just like in unix, unless you restrict it so that you can only chown files to yourself. You want to be able to trust the metadata about owners. If the user can set the owner to someone else, it is just noise. As an example, let's say there is a file containing secrets. If I'm worried about someone finding it, I'll just chown it to fred and let him get in trouble. > Allow users with write access to a directory to change ownership of its subdirectories/files > -------------------------------------------------------------------------------------------- > > Key: HDFS-1113 > URL: https://issues.apache.org/jira/browse/HDFS-1113 > Project: Hadoop HDFS > Issue Type: New Feature > Components: name-node > Environment: All > Reporter: Milind Bhandarkar > Assignee: Sanjay Radia > > owner and group of a file/directory, and namespace/diskspace quota for a directory are mutable attributes. If I have writable access to a directory, say /team/MyTeam, and if there are subdirectories underneath, such as /team/MyTeam/TeamMember1, /team/MyTeam/TeamMember2, then I should be able to chown, chgrp, setQuota, clrQuota on TeamMemeber{1|2} subdirectories. Currently in HDFS (and in Posix), it requires me to be a superuser to perform these operations. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.