You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@hbase.apache.org by "Enis Soztutar (JIRA)" <ji...@apache.org> on 2015/05/26 23:42:23 UTC
[jira] [Created] (HBASE-13780) Default to 700 for HDFS root dir
permissions for secure deployments
Enis Soztutar created HBASE-13780:
-------------------------------------
Summary: Default to 700 for HDFS root dir permissions for secure deployments
Key: HBASE-13780
URL: https://issues.apache.org/jira/browse/HBASE-13780
Project: HBase
Issue Type: Improvement
Reporter: Enis Soztutar
Assignee: Enis Soztutar
Fix For: 2.0.0, 1.2.0
Secure mode deployments should protect the files under HDFS root dir. We should check and set the root dirs permissions on a kerberos setup so that users does not have to.
We have {{hbase.data.umask.enable}} and {{hbase.data.umask}} for data files, but those are not that useful since we should protect dir listing, and access to WAL files, snapshot files, etc.
See HBASE-13768 which has an integration test for this.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)