Github user harishreedharan commented on the pull request:
https://github.com/apache/spark/pull/4688#issuecomment-76295682
Again, since the keytab is always sent only via HDFS API, we are ok, since
that is encrypted on a secure HDFS cluster. Only the delegation tokens are sent
via akka, which can be secured via SSL. So even if a token is sniffed, it is
accessible only for a limited time (though the root cause would be that there
is no SSL, which should be taken care of)
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
