[
https://issues.apache.org/jira/browse/HADOOP-4705?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12652431#action_12652431
]
Marco Nicosia commented on HADOOP-4705:
---------------------------------------
Sorry to arrive late to this party, but I am not clear that making user
directories world-readable is a good idea, much less world-writable? Was user
privacy considered when generating this patch? I am quite certain that
world-writable directories is not a great idea.
bq. As files/directories, inside temp-dir and work-dirs of HoD, having a
permission of 0700, it is not feasible for application like Chukwa to have
access for files and directories inside this temp-dir for gathering hadoop
metrics.
I am not sure I agree with this. If a monitoring or reporting process needs
carte blanche access to all users' information, we should find a way for it to
run (at least that part) as a privileged user, rather than making the data
available to all.
> [HOD] Grant read permissions for files/directories created by hod as part of
> provisioning hadoop clusters
> ---------------------------------------------------------------------------------------------------------
>
> Key: HADOOP-4705
> URL: https://issues.apache.org/jira/browse/HADOOP-4705
> Project: Hadoop Core
> Issue Type: Improvement
> Components: contrib/hod
> Reporter: Hemanth Yamijala
> Assignee: Hemanth Yamijala
> Fix For: 0.20.0
>
> Attachments: hadoop-4705-1.txt, hadoop-4705-2.txt, hadoop-4705-3.txt,
> hadoop-4705.txt
>
>
> When HOD creates the log, work and temp directories for Hadoop, it creates
> them with permissions 0700. This is too restrictive for applications like
> Chukwa which need access to files in this directory for generating Hadoop
> metrics. This is a request to allow read permissions to other applications.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
