[jira] [Commented] (KUDU-1875) Refuse unauthenticated connections from publicly routable IP addrs

Dan Burkert (JIRA) Mon, 13 Feb 2017 17:23:27 -0800

    [ 
https://issues.apache.org/jira/browse/KUDU-1875?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15864827#comment-15864827
 ]


Dan Burkert commented on KUDU-1875:
-----------------------------------

I mean this should be the default, even if the cluster is not otherwise 
configured to use security features.

> Refuse unauthenticated connections from publicly routable IP addrs
> ------------------------------------------------------------------
>
>                 Key: KUDU-1875
>                 URL: https://issues.apache.org/jira/browse/KUDU-1875
>             Project: Kudu
>          Issue Type: Improvement
>          Components: rpc, security
>    Affects Versions: 1.2.0
>            Reporter: Dan Burkert
>
> Kudu should by default not accept unauthenticated connections from publicly 
> routable IPs, even if authentication and encryption are not configured.  An 
> unsafe flag should be provided to enable unauthenticated connections from 
> publicly routable IPs, with appropriately scary verbiage and a link to 
> https://krebsonsecurity.com/2017/01/extortionists-wipe-thousands-of-databases-victims-who-pay-up-get-stiffed/.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

[jira] [Commented] (KUDU-1875) Refuse unauthenticated connections from publicly routable IP addrs

Reply via email to