[
https://issues.apache.org/jira/browse/HDFS-3096?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Matt Foley updated HDFS-3096:
-----------------------------
Target Version/s: 1.1.0, 2.0.0 (was: 2.0.0, 1.0.3)
No patch submitted in time for 1.0.3. Please consider continuing this
contribution in 1.1. Thanks.
> dfs.datanode.data.dir.perm is set to 755 instead of 700
> -------------------------------------------------------
>
> Key: HDFS-3096
> URL: https://issues.apache.org/jira/browse/HDFS-3096
> Project: Hadoop HDFS
> Issue Type: Bug
> Components: data-node
> Affects Versions: 0.23.0, 1.0.0
> Reporter: Bikas Saha
> Assignee: Bikas Saha
>
> dfs.datanode.data.dir.perm is used by the datanode to set the permissions of
> it data directories. This is set by default to 755 which gives read
> permissions to everyone to that directory, opening up possibility of reading
> the data blocks by anyone in a secure cluster. Admins can over-ride this
> config but its sub-optimal practice for the default to be weak. IMO, the
> default should be strong and the admins can relax it if necessary.
> The fix is to change default permissions to 700.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
