You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@bookkeeper.apache.org by GitBox <gi...@apache.org> on 2017/11/24 17:47:54 UTC

[GitHub] sijie commented on issue #771: Don't require password to create or open ledgers

sijie commented on issue #771: Don't require password to create or open ledgers
URL: https://github.com/apache/bookkeeper/pull/771#issuecomment-346875731
 
 
   password is not the security mechanism. but it is there in the bookies. bookie does password checking. all the applications that written using old api are using some password. we should enforce the check rather than using a default value. because both create and open have to use the same password. I am -1 on providing a default value, given current bookie implementation has password checking.
   
   I don't think it is worth discussing whether password should be default or not. A broader question is whether we still need password, given we already have all the security mechanism in place. instead, I would like to see a proposal or a discussion on removing password completely. before that, I would prefer making password not default.

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services