hadoop-yarn-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Karthik Kambatla (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (YARN-1573) ZK store should pick a private password for root-node-acls
Date Fri, 17 Jan 2014 18:22:20 GMT

    [ https://issues.apache.org/jira/browse/YARN-1573?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13875051#comment-13875051
] 

Karthik Kambatla commented on YARN-1573:
----------------------------------------

The private password is only for create-delete perms. The admin still has admin access and
can reclaim all other kinds of accesses as well.

> ZK store should pick a private password for root-node-acls
> ----------------------------------------------------------
>
>                 Key: YARN-1573
>                 URL: https://issues.apache.org/jira/browse/YARN-1573
>             Project: Hadoop YARN
>          Issue Type: Sub-task
>          Components: resourcemanager
>    Affects Versions: 2.4.0
>            Reporter: Karthik Kambatla
>            Assignee: Karthik Kambatla
>         Attachments: yarn-1573-1.patch
>
>
> Currently, when HA is enabled, ZK store uses cluster-timestamp as the password for root
node ACLs to give the Active RM exclusive access to the store. A more private value like a
random number might be better. 



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

Mime
View raw message