You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-issues@hadoop.apache.org by "Mingliang Liu (JIRA)" <ji...@apache.org> on 2018/08/31 01:46:00 UTC
[jira] [Comment Edited] (HADOOP-14833) Remove s3a user:secret
authentication
[ https://issues.apache.org/jira/browse/HADOOP-14833?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16595664#comment-16595664 ]
Mingliang Liu edited comment on HADOOP-14833 at 8/31/18 1:45 AM:
-----------------------------------------------------------------
Thanks Steve. I'm +1 on the proposal, and will finish the review this week (EDIT: hopefully). Don't get blocked by me if there is any binding +1.
was (Author: liuml07):
Thanks Steve. I'm +1 on the proposal, and will finish the review this week. Don't get blocked by me if there is any binding +1.
> Remove s3a user:secret authentication
> -------------------------------------
>
> Key: HADOOP-14833
> URL: https://issues.apache.org/jira/browse/HADOOP-14833
> Project: Hadoop Common
> Issue Type: Sub-task
> Components: fs/s3
> Affects Versions: 3.0.0-beta1
> Reporter: Steve Loughran
> Assignee: Steve Loughran
> Priority: Major
> Attachments: HADOOP-14833-001.patch
>
>
> Remove the s3a://user:secret@host auth mechanism from S3a.
> As well as being insecure, it causes problems with S3Guard's URI matching code.
> Proposed: cull it utterly. We've been telling people to stop using it since HADOOP-3733
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org