[CASSANDRA-6660] Make node tool command take a password file - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Low
Resolution: Fixed
Fix Version/s: 2.1 beta1
Component/s: None
Labels:
- nodetool

Description

We are sending the jmx password in the clear to the node tool command in production. This is a security risk. Any one doing a 'ps' can see the clear password. Can we change the node tool command to also take a password file argument. This file will list the JMX user and passwords. Example below:

cat /cassandra/run/10003004.jmxpasswd
monitorRole abc
controlRole def

Based on the user name provided, node tool can pick up the right password.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

cassandra-2.0-6660.patch
03/Aug/15 21:13
3 kB
Dmitrii Saprykin
trunk-6660-v3.patch
19/Feb/14 13:24
3 kB
Clément Lardeur
trunk-6660-v2.patch
18/Feb/14 17:49
3 kB
Clément Lardeur
trunk-6660-v1.patch
18/Feb/14 13:32
2 kB
Clément Lardeur

Issue Links

is cloned by

CASSANDRA-9972 Make node tool command take a password file (2.0.x)

Resolved

Activity

People

Assignee:: Clément Lardeur

Reporter:: Vishy Kasar

Authors:: Clément Lardeur

Reviewers:: Sankalp Kohli

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: 05/Feb/14 19:44

Updated:: 16/Apr/19 09:31

Resolved:: 19/Feb/14 17:40