You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@hbase.apache.org by "Duo Zhang (JIRA)" <ji...@apache.org> on 2018/02/19 05:44:00 UTC

[jira] [Commented] (HBASE-19402) Add missing security check for RegionServerStatusService RPCs

    [ https://issues.apache.org/jira/browse/HBASE-19402?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16368804#comment-16368804 ] 

Duo Zhang commented on HBASE-19402:
-----------------------------------

For our secure cluster we start master and RS with the same user. And I think this is the common case? If you use secure HBase then usually the HDFS is also secured, and usually the permission would be 700, if you use different users for master and RS then there will be problem accessing HDFS...

Thanks,

> Add missing security check for RegionServerStatusService RPCs
> -------------------------------------------------------------
>
>                 Key: HBASE-19402
>                 URL: https://issues.apache.org/jira/browse/HBASE-19402
>             Project: HBase
>          Issue Type: Sub-task
>    Affects Versions: 2.0.0-beta-1
>            Reporter: Balazs Meszaros
>            Priority: Major
>
> The following RPC methods do not call the observers, therefore they are not guarded by AccessController:
> - regionServerStartup
> - regionServerReport
> - reportRSFatalError
> - reportRegionStateTransition
> - reportRegionSpaceUse



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)