Fwd: I have one small question that always intrigue me

[Zara Parst <ed...@gmail.com>]

I am using zookeeper for many application, However I have severe problem
about how to safeguard it.  As any zookeeper client can connect to
zookeeper server, Zookeeper has facility to protect znode however any one
can see znode acl where password is encrypted.  Decrypting password or
guessing password is not a big deal. As we know password is SHA encrypted
also there is no limitation of number of try on authorize zkClient with
ACL.
So my point is how to safeguard zookeeper.  Please explain to me if I am
looking to issue in different way.

Re: I have one small question that always intrigue me

[will martin <wm...@outlook.com>]

Here is a method that people from a source that actually gets paid for OSS.

clear, to the point, short 


https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.3.4/bk_installing_manually_book/content/zookeeper_configuration.html

> On Feb 20, 2016, at 9:08 PM, Zara Parst <ed...@gmail.com> wrote:
> 
> I am using zookeeper for many application, However I have severe problem
> about how to safeguard it.  As any zookeeper client can connect to
> zookeeper server, Zookeeper has facility to protect znode however any one
> can see znode acl where password is encrypted.  Decrypting password or
> guessing password is not a big deal. As we know password is SHA encrypted
> also there is no limitation of number of try on authorize zkClient with
> ACL.
> So my point is how to safeguard zookeeper.  Please explain to me if I am
> looking to issue in different way.