spark-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Nicholas Chammas (JIRA)" <j...@apache.org>
Subject [jira] [Created] (SPARK-2528) spark-ec2 security group permissions are too open
Date Wed, 16 Jul 2014 17:42:06 GMT
Nicholas Chammas created SPARK-2528:
---------------------------------------

             Summary: spark-ec2 security group permissions are too open
                 Key: SPARK-2528
                 URL: https://issues.apache.org/jira/browse/SPARK-2528
             Project: Spark
          Issue Type: Bug
          Components: EC2
    Affects Versions: 1.0.0
            Reporter: Nicholas Chammas
            Priority: Minor


{{spark-ec2}} configures EC2 security groups with ports [open to the world | https://github.com/apache/spark/blob/master/ec2/spark_ec2.py#L280].
This is an unnecessary security risk, even for a short-lived cluster.

Wherever possible, it would be better if, when launching a new cluster, {{spark-ec2}} detects
the host's external IP address (e.g. via {{icanhazip.com}}) and grants access specifically
to that IP address.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message