[
https://issues.apache.org/jira/browse/HADOOP-7599?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13101599#comment-13101599
]
Devaraj Das commented on HADOOP-7599:
-------------------------------------
Went over the patch. Some comments:
1. Don't chmod the keytab dir contents to 755. The keytab files should be owned
by the user running the respective daemon, and 700ed.
2. On the bullet#9 in my last comment, you can do a check for empty config
files (like if the strings '<property>' and/or '<value>' occurs, the config
file is not empty). Not pretty but safer.. Long term, Hadoop could stop
shipping the empty config files.
> Improve hadoop setup conf script to setup secure Hadoop cluster
> ---------------------------------------------------------------
>
> Key: HADOOP-7599
> URL: https://issues.apache.org/jira/browse/HADOOP-7599
> Project: Hadoop Common
> Issue Type: Bug
> Components: scripts
> Affects Versions: 0.20.203.0
> Environment: Java 6, RHEL 5.6
> Reporter: Eric Yang
> Assignee: Eric Yang
> Fix For: 0.20.205.0
>
> Attachments: HADOOP-7599-1.patch, HADOOP-7599-trunk.patch,
> HADOOP-7599.patch
>
>
> Setting up a secure Hadoop cluster requires a lot of manual setup. The
> motivation of this jira is to provide setup scripts to automate setup secure
> Hadoop cluster.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
