You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@trafodion.apache.org by "Steve Varnau (JIRA)" <ji...@apache.org> on 2017/07/28 20:33:00 UTC

[jira] [Commented] (TRAFODION-2697) installers should secure bulkload hdfs dir for hbase upload

    [ https://issues.apache.org/jira/browse/TRAFODION-2697?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16105620#comment-16105620 ] 

Steve Varnau commented on TRAFODION-2697:
-----------------------------------------

Since trafodion writes the data and then passes it to hbase, bulkload directory needs to be write-able by trafodion user and read-able by hbase user, but for security sake, not read-able by other hdfs users (other).  So, we set permissions 755 on /user/trafodion, 750 on /user/trafodion/bulkload, but set group on bulkload to hbase's group.

trafodion user should already be part of the hbase group.
We query the group name via the "hdfs groups hbase" command.

> installers should secure bulkload hdfs dir for hbase upload
> -----------------------------------------------------------
>
>                 Key: TRAFODION-2697
>                 URL: https://issues.apache.org/jira/browse/TRAFODION-2697
>             Project: Apache Trafodion
>          Issue Type: Bug
>          Components: installer
>            Reporter: Steve Varnau
>            Assignee: Steve Varnau
>
> both installers should make hdfs:/user/trafodion/bulkload directory so that it is readable by hbase user, without making it world-readable.
> This is needed to create hbase index, etc.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)