Hadoop Common Security features for Hadoop Created: 22/Oct/08 06:36 PM   Updated: 10/Nov/09 01:01 AM Component/s: security Affects Version/s: None Fix Version/s: None

Time Tracking: Issue & Sub-Tasks Issue Only Issue & Sub-Tasks Issue Only Not Specified Not Specified

Issue Links: Incorporates This issue incorporates: MAPREDUCE-720 Task logs should have right access-control   Reference This issue relates to: HADOOP-6325 need security keys storage solution HADOOP-5405 Adding support for HDFS proxy HADOOP-4343 Adding user and service-to-service authentication to Hadoop HADOOP-4359 Access Token: Support for data access authorization checking on DataNodes HADOOP-4348 Adding service-level authorization to Hadoop HADOOP-6367 Move Access Token implementation from Common to HDFS HADOOP-4453 Improve ssl handling for distcp This issue is related to: MAPREDUCE-181 Secure job submission MAPREDUCE-189 Change Map-Reduce framework to use JAAS instead of UGI MAPREDUCE-1026 Shuffle should be secure HADOOP-4851 Change filesystem permissions to use JAAS rather than UGI HADOOP-4850 Fix IPC Client to not use UGI HADOOP-6151 The servlets should quote html characters MAPREDUCE-563 Security features for Map/Reduce HADOOP-6299 Use JAAS LoginContext for our login HADOOP-4656 Add a user to groups mapping service HADOOP-4853 Improvement to IPC HADOOP-3953 Sticky bit for directories

Sub-Tasks:

All

Open

1. Map and Reduce tasks should run as the user who submitted the job Resolved Hemanth Yamijala   2. Job-specific data on HDFS (job.xml, input splits etc.) should have right access-control Resolved Unassigned   3. Implement setuid executable for Linux to assist in launching tasks as job owners Resolved Sreekanth Ramakrishnan   4. Reduce task getting map output over HTTP should have right access control Resolved Kan Zhang

All

Comments

Work Log

Change History

Subversion Commits

Sort Order: