[
https://issues.apache.org/jira/browse/HDDS-1712?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16886653#comment-16886653
]
Eric Yang commented on HDDS-1712:
---------------------------------
[~elek] core-site.xml is required because fs.defaultName needs to be specified.
If there is no core-site.xml with volume and bucket in URL, then the test code
does not test Ozone.
[~anu] Doesn't Ozone quick start guide refer to use docker-compose to start the
cluster? This puts Docker image on the critical path for most users to try it
out. Why ask people to try it out with docker, if you have no intention to
finish what you started?
> Remove sudo access from Ozone docker image
> ------------------------------------------
>
> Key: HDDS-1712
> URL: https://issues.apache.org/jira/browse/HDDS-1712
> Project: Hadoop Distributed Data Store
> Issue Type: Bug
> Reporter: Eric Yang
> Assignee: Eric Yang
> Priority: Major
> Labels: pull-request-available
> Attachments: HDDS-1712.001.patch
>
> Time Spent: 0.5h
> Remaining Estimate: 0h
>
> Ozone docker image is given unlimited sudo access to hadoop user. This poses
> a security risk where host level user uid 1000 can attach a debugger to the
> container process to obtain root access.
--
This message was sent by Atlassian JIRA
(v7.6.14#76016)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
