You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "steveloughran (via GitHub)" <gi...@apache.org> on 2023/02/15 20:19:46 UTC

[GitHub] [hadoop] steveloughran commented on a diff in pull request #5406: HADOOP-18627 Stronger wording in 'secure mode' intro

steveloughran commented on code in PR #5406:
URL: https://github.com/apache/hadoop/pull/5406#discussion_r1107678292


##########
hadoop-common-project/hadoop-common/src/site/markdown/SecureMode.md:
##########
@@ -20,7 +20,9 @@ Hadoop in Secure Mode
 Introduction
 ------------
 
-This document describes how to configure authentication for Hadoop in secure mode. When Hadoop is configured to run in secure mode, each Hadoop service and each user must be authenticated by Kerberos.
+In its default configuration, we expect you to make sure attackers don't have access to your Hadoop deployment by restricting all network access. If you want to expose Hadoop to untrusted users, you will have to configure authentication for Hadoop in secure mode as described in this document.

Review Comment:
   I don't think people cloud deployments realise they've exposed their hadoop services to the world, so we need to be a bit more explicit here. 



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org