[
https://issues.apache.org/jira/browse/KUDU-1921?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17403638#comment-17403638
]
ASF subversion and git services commented on KUDU-1921:
-------------------------------------------------------
Commit 7feceaa32fa3df5a531ad8f034ee39a9b25e17a2 in kudu's branch
refs/heads/master from Attila Bukor
[ https://gitbox.apache.org/repos/asf?p=kudu.git;h=7feceaa ]
[spark] KUDU-1921 Add ability to require authn/encryption
Change-Id: Iba1877e13a3218f0c285ded6c0f7047c497ef6aa
Reviewed-on: http://gerrit.cloudera.org:8080/17786
Reviewed-by: Alexey Serbin <[email protected]>
Tested-by: Kudu Jenkins
> Add ability for clients to require authentication/encryption
> ------------------------------------------------------------
>
> Key: KUDU-1921
> URL: https://issues.apache.org/jira/browse/KUDU-1921
> Project: Kudu
> Issue Type: Improvement
> Components: client, security
> Affects Versions: 1.3.0
> Reporter: Todd Lipcon
> Assignee: Attila Bukor
> Priority: Critical
> Labels: roadmap-candidate
>
> Currently, the clients always operate in "optional" mode for authentication
> and encryption. This means that they are vulnerable to downgrade attacks by a
> MITM. We should provide APIs so that clients can be configured to prohibit
> downgrade when connecting to clusters they know to be secure.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
