You are viewing a plain text version of this content. The canonical link for it is here.

Posted to hdfs-dev@hadoop.apache.org by "Jakob Homan (JIRA)" <ji...@apache.org> on 2010/03/11 01:33:28 UTC

[jira] Created: (HDFS-1033) In securre clusters, NN and SNN should verify that the remote principal during image and edits transfer

In securre clusters, NN and SNN should verify that the remote principal during image and edits transfer
-------------------------------------------------------------------------------------------------------

                 Key: HDFS-1033
                 URL: https://issues.apache.org/jira/browse/HDFS-1033
             Project: Hadoop HDFS
          Issue Type: Improvement
          Components: security
            Reporter: Jakob Homan
            Assignee: Jakob Homan


Currently anyone can connect and download image/edits from Namenode.  In a secure cluster we can verify the identity of the principal making the request; we should disallow requests from anyone except the NN and SNN principals (and their hosts due to the lousy KerbSSL limitation).

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.