[
https://issues.apache.org/jira/browse/HADOOP-15443?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16464482#comment-16464482
]
Allen Wittenauer commented on HADOOP-15443:
-------------------------------------------
bq. As per current logic shell decides if it needs to execute secure class or
not.
As documented, the HDFS_DATANODE_SECURE_USER variable should not be set for the
secure SASL/RPC use case. This should prevent the privileged mode check.
> hadoop shell should allow non-privileged user to start secure daemons.
> ----------------------------------------------------------------------
>
> Key: HADOOP-15443
> URL: https://issues.apache.org/jira/browse/HADOOP-15443
> Project: Hadoop Common
> Issue Type: Bug
> Reporter: Ajay Kumar
> Assignee: Ajay Kumar
> Priority: Major
> Attachments: HADOOP-15443.poc.patch
>
>
> With [HDFS-13081] now secure Datanode can be started without root privileges
> if rpc port is protected via sasl and ssl is enabled for http. However hadoop
> shell still has check for privilged user in hadoop-functions.sh. Jira intends
> to amend it, at-least for hdfs.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
