In securre clusters, NN and SNN should verify that the remote principal during
image and edits transfer
-------------------------------------------------------------------------------------------------------
Key: HDFS-1033
URL: https://issues.apache.org/jira/browse/HDFS-1033
Project: Hadoop HDFS
Issue Type: Improvement
Components: security
Reporter: Jakob Homan
Assignee: Jakob Homan
Currently anyone can connect and download image/edits from Namenode. In a
secure cluster we can verify the identity of the principal making the request;
we should disallow requests from anyone except the NN and SNN principals (and
their hosts due to the lousy KerbSSL limitation).
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
