Return-Path: X-Original-To: apmail-hbase-issues-archive@www.apache.org Delivered-To: apmail-hbase-issues-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 1CD8617C19 for ; Wed, 25 Mar 2015 17:03:17 +0000 (UTC) Received: (qmail 32716 invoked by uid 500); 25 Mar 2015 17:02:54 -0000 Delivered-To: apmail-hbase-issues-archive@hbase.apache.org Received: (qmail 32658 invoked by uid 500); 25 Mar 2015 17:02:54 -0000 Mailing-List: contact issues-help@hbase.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Delivered-To: mailing list issues@hbase.apache.org Received: (qmail 32220 invoked by uid 99); 25 Mar 2015 17:02:54 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 25 Mar 2015 17:02:54 +0000 Date: Wed, 25 Mar 2015 17:02:53 +0000 (UTC) From: "Andrew Purtell (JIRA)" To: issues@hbase.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Commented] (HBASE-5238) Add a log4j category for all edits to META/ROOT MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/HBASE-5238?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14380240#comment-14380240 ] Andrew Purtell commented on HBASE-5238: --------------------------------------- META has a fixed system defined schema so I think in this case we don't care if column families are printed. Keys can definitely be sensitive, we should avoid logging those. One can argue that META is already world readable but a persisted log can leak and the information inside can be read independently of access routes to the cluster. For example, the cluster might be firewalled to prevent random access to META, because keys are sensitive, but here we've slipped them into the log, those log lines are now up in Splunk or Elasticsearch, and network ACLs grant wider access to those. > Add a log4j category for all edits to META/ROOT > ----------------------------------------------- > > Key: HBASE-5238 > URL: https://issues.apache.org/jira/browse/HBASE-5238 > Project: HBase > Issue Type: New Feature > Components: regionserver > Affects Versions: 2.0.0 > Reporter: Todd Lipcon > Assignee: Andrey Stepachev > Priority: Minor > Labels: beginner > Attachments: HBASE-5238.patch, HBASE-5238.patch, HBASE-5238.v2.patch, meta2.log > > > Occasionally we run into bugs that have corrected META and written some bad data to META/ROOT but it's difficult to understand the order in which things happened. One option is to dump the HLog contents from the servers that hosted META at that time, but then it's interspersed with all other data. It would be nice to add a Log4j Logger to which we log all edits being applied to META and ROOT in textual form at DEBUG level. Then it would be easier to do a cluster-wide log grep to see what happened when. -- This message was sent by Atlassian JIRA (v6.3.4#6332)