hbase-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andrew Purtell (JIRA)" <j...@apache.org>
Subject [jira] [Created] (HBASE-13772) Replication endpoints should restrict access to the service principal
Date Mon, 25 May 2015 17:21:17 GMT
Andrew Purtell created HBASE-13772:
--------------------------------------

             Summary: Replication endpoints should restrict access to the service principal
                 Key: HBASE-13772
                 URL: https://issues.apache.org/jira/browse/HBASE-13772
             Project: HBase
          Issue Type: Bug
            Reporter: Andrew Purtell
            Priority: Blocker
             Fix For: 2.0.0, 1.0.2, 1.2.0, 1.1.1, 0.98.13


Replication endpoints will accept RPC connections from any Kerberos principal that is trusted
by the endpoint's local KDC. This is far too open and may allow for the establishment of rogue
endpoints (in conjunction with HBASE-13771). 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message