[jira] [Assigned] (KUDU-1875) Refuse unauthenticated connections from publicly routable IP addrs

Dan Burkert (JIRA) Thu, 16 Mar 2017 15:51:07 -0700

     [ 
https://issues.apache.org/jira/browse/KUDU-1875?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Dan Burkert reassigned KUDU-1875:
---------------------------------

    Assignee: Hao Hao

> Refuse unauthenticated connections from publicly routable IP addrs
> ------------------------------------------------------------------
>
>                 Key: KUDU-1875
>                 URL: https://issues.apache.org/jira/browse/KUDU-1875
>             Project: Kudu
>          Issue Type: Improvement
>          Components: rpc, security
>    Affects Versions: 1.2.0
>            Reporter: Dan Burkert
>            Assignee: Hao Hao
>
> Kudu should by default not accept unauthenticated connections from publicly 
> routable IPs, even if authentication and encryption are not configured.  An 
> unsafe flag should be provided to enable unauthenticated connections from 
> publicly routable IPs, with appropriately scary verbiage and a link to 
> https://krebsonsecurity.com/2017/01/extortionists-wipe-thousands-of-databases-victims-who-pay-up-get-stiffed/.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

[jira] [Assigned] (KUDU-1875) Refuse unauthenticated connections from publicly routable IP addrs

Reply via email to