[jira] [Comment Edited] (YARN-1253) Changes to LinuxContainerExecutor to run containers as a single dedicated user in non-secure mode

Wed, 02 Oct 2013 17:20:11 -0700 

    [ 
https://issues.apache.org/jira/browse/YARN-1253?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13784667#comment-13784667
 ] 

Alejandro Abdelnur edited comment on YARN-1253 at 10/3/13 12:18 AM:
--------------------------------------------------------------------

Created YARN-1267 to refactor and decouple cgroups from LCE.

Thinking a bit, I agree with Arun about leaving this JIRA out of 
branch-2.1-beta, only trunk/branch-2.

I've reviewed and tested the patch already, I'll wait till Friday noon for 
comments from other reviewers before committing.


was (Author: tucu00):
Create YARN-1267 to refactor and decouple cgroups from LCE.

Thinking a bit, I agree with Arun about leaving this JIRA out of 
branch-2.1-beta, only trunk/branch-2.

I've reviewed and tested the patch already, I'll wait till Friday noon for 
comments from other reviewers before committing.

> Changes to LinuxContainerExecutor to run containers as a single dedicated 
> user in non-secure mode
> -------------------------------------------------------------------------------------------------
>
>                 Key: YARN-1253
>                 URL: https://issues.apache.org/jira/browse/YARN-1253
>             Project: Hadoop YARN
>          Issue Type: New Feature
>          Components: nodemanager
>    Affects Versions: 2.1.0-beta
>            Reporter: Alejandro Abdelnur
>            Assignee: Roman Shaposhnik
>            Priority: Blocker
>         Attachments: YARN-1253.patch.txt
>
>
> When using cgroups we require LCE to be configured in the cluster to start 
> containers. 
> When LCE starts containers as the user that submitted the job. While this 
> works correctly in a secure setup, in an un-secure setup this presents a 
> couple issues:
> * LCE requires all Hadoop users submitting jobs to be Unix users in all nodes
> * Because users can impersonate other users, any user would have access to 
> any local file of other users
> Particularly, the second issue is not desirable as a user could get access to 
> ssh keys of other users in the nodes or if there are NFS mounts, get to other 
> users data outside of the cluster.



--
This message was sent by Atlassian JIRA
(v6.1#6144)

Reply via email to