[ https://issues.apache.org/jira/browse/HADOOP-5722?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Allen Wittenauer resolved HADOOP-5722. -------------------------------------- Resolution: Fixed I'm going to dupe this to a new bug, as it isn't just metrics that has this problem now. > HTTP metrics interface enable/disable must be configurable > ---------------------------------------------------------- > > Key: HADOOP-5722 > URL: https://issues.apache.org/jira/browse/HADOOP-5722 > Project: Hadoop Common > Issue Type: Bug > Components: metrics, security > Reporter: Marco Nicosia > > HADOOP-5469 added a convenient end-run around JMX authentication by revealing > the same metrics over HTTP. That's cool, but we need to secure all accesses > to our Hadoop cluster, so while this may be enabled by default, we need some > configurable way to disable the unauthenticated port. -- This message was sent by Atlassian JIRA (v6.2#6252)