Hong Zhiguo commented on YARN-1545:

You mean we should define the upper bound of the number or length of fields 
inside the messages. Should we have these bounds configurable? or pre-defined 
as constants?

How about the rate of messages?  For example, a bad client performs query of 
getApplications at it's full speed.

> [Umbrella] Prevent DoS of YARN components by putting in limits
> --------------------------------------------------------------
>                 Key: YARN-1545
>                 URL: https://issues.apache.org/jira/browse/YARN-1545
>             Project: Hadoop YARN
>          Issue Type: Improvement
>            Reporter: Vinod Kumar Vavilapalli
> I did a pass and found many places that can cause DoS on various YARN 
> services. Need to fix them.

This message was sent by Atlassian JIRA

Reply via email to