You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@hbase.apache.org by "Enis Soztutar (JIRA)" <ji...@apache.org> on 2015/05/26 23:42:23 UTC

[jira] [Created] (HBASE-13780) Default to 700 for HDFS root dir permissions for secure deployments

Enis Soztutar created HBASE-13780:
-------------------------------------

             Summary: Default to 700 for HDFS root dir permissions for secure deployments
                 Key: HBASE-13780
                 URL: https://issues.apache.org/jira/browse/HBASE-13780
             Project: HBase
          Issue Type: Improvement
            Reporter: Enis Soztutar
            Assignee: Enis Soztutar
             Fix For: 2.0.0, 1.2.0


Secure mode deployments should protect the files under HDFS root dir. We should check and set the root dirs permissions on a kerberos setup so that users does not have to. 

We have {{hbase.data.umask.enable}} and {{hbase.data.umask}} for data files, but those are not that useful since we should protect dir listing, and access to WAL files, snapshot files, etc. 

See HBASE-13768 which has an integration test for this. 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)