[CASSANDRA-9972] Make node tool command take a password file (2.0.x) - ASF JIRA

Agile Board

Attach files

Attach Screenshot

Bulk Copy Attachments

Bulk Move Attachments

Voters

Watch issue

Watchers

Create sub-task

Convert to sub-task

Move

Link

Clone

Labels

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Low
Resolution: Won't Fix
Fix Version/s: None
Component/s: None
Labels:
- nodetool

Description

We are sending the jmx password in the clear to the node tool command in production. This is a security risk. Any one doing a 'ps' can see the clear password. Can we change the node tool command to also take a password file argument. This file will list the JMX user and passwords. Example below:

cat /cassandra/run/10003004.jmxpasswd
monitorRole abc
controlRole def

Based on the user name provided, node tool can pick up the right password.

Attachments

cassandra-2.0-6660.patch
04/Aug/15 00:34
3 kB
Dmitrii Saprykin

Issue Links

Add Link

is a clone of

CASSANDRA-6660 Make node tool command take a password file

Resolved

Delete this link

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: Clément Lardeur Assign to me

Reporter:: Dmitrii Saprykin

Authors:: Clément Lardeur

Reviewers:: Sankalp Kohli

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 04/Aug/15 00:34

Updated:: 16/Apr/19 09:31

Resolved:: 05/Jan/16 20:50

Agile

View on Board

Make node tool command take a password file (2.0.x)

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates

Agile

Slack

Issue deployment