[
https://issues.apache.org/jira/browse/HDFS-7195?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14164540#comment-14164540
]
Yi Liu commented on HDFS-7195:
------------------------------
Thanks Chris, the description in the patch is very clear. It looks good to me.
I have one small comment, it's *not* about the user doc, maybe we can change it
too or do it in a following on JIRA.
In {{hadoop-env.sh}}, there are also old descriptions for Secure DataNode:
{quote}
# The jsvc implementation to use. Jsvc is required to run secure datanodes.
# export JSVC_HOME=/usr/bin
...
# On secure datanodes, user to run the datanode as after dropping privileges
# This **MUST** be uncommented to enable secure HDFS!
# export HADOOP_SECURE_DN_USER=hdfs
{quote}
> Update user doc of secure mode about Datanodes don't require root or jsvc
> -------------------------------------------------------------------------
>
> Key: HDFS-7195
> URL: https://issues.apache.org/jira/browse/HDFS-7195
> Project: Hadoop HDFS
> Issue Type: Task
> Components: documentation, security
> Reporter: Yi Liu
> Assignee: Chris Nauroth
> Attachments: HDFS-7195.1.patch, hadoop-site.tar.bz2
>
>
> HDFS-2856 adds support that Datanodes don't require root or jsvc. If
> {{dfs.data.transfer.protection}} is configured and {{dfs.http.policy}} is
> _HTTPS_ONLY_, then secure dataNode doesn't need to use privileged port.
> This has not been updated in the latest user doc of secure mode. This JIRA is
> to fix that.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
