Github user vanzin commented on the pull request:
https://github.com/apache/spark/pull/4106#issuecomment-75854994
> (3) I'm confused here - Spark can't read a keytab if the permissions on
the keytab file deny access.
But in standalone mode all executors run as the "spark" user, whatever that
is. If I understood your design, that means that "spark" would need to be able
to read the keytabs for all users. Which means users can read each other's
keytabs.
I understand this might not be a concern for the scenario where this
feature is being proposed, but it might give people the wrong impression. Why
have secure HDFS in that case to start with?
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
