[
https://issues.apache.org/jira/browse/HADOOP-15169?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16951436#comment-16951436
]
Wei-Chiu Chuang commented on HADOOP-15169:
------------------------------------------
It is fine in the current Jetty version and Hadoop 3.3.0 where the default
excluded protocols in Jetty and default enabled protocols in Hadoop don't
overlap. The effect is the same where the order is reversed or not.
If one day we update to a future Jetty version that excludes more protocols and
some of which are permitted by Hadoop by default, I would like them not to be
enabled (Jetty's exclude list takes precedence over include list) by default,
unless user consciously update the hadoop.ssl.enabled.protocols configuration.
> "hadoop.ssl.enabled.protocols" should be considered in httpserver2
> ------------------------------------------------------------------
>
> Key: HADOOP-15169
> URL: https://issues.apache.org/jira/browse/HADOOP-15169
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Reporter: Brahma Reddy Battula
> Assignee: Brahma Reddy Battula
> Priority: Major
> Attachments: HADOOP-15169-branch-2.patch, HADOOP-15169.002.patch,
> HADOOP-15169.003.patch, HADOOP-15169.patch
>
>
> As of now *hadoop.ssl.enabled.protocols"* will not take effect for all the
> http servers( only Datanodehttp server will use this config).
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
