Description
This is a top-level tracking JIRA for security work we are doing in Hadoop. Please add reference to this when opening new security related JIRAs.
Attachments
Attachments
Issue Links
- incorporates
-
MAPREDUCE-720 Task logs should have right access-control
- Resolved
- is depended upon by
-
HBASE-2016 [DAC] Authentication
- Closed
- is duplicated by
-
HADOOP-6960 Hadoop Security Design
- Resolved
- is related to
-
MAPREDUCE-189 Change Map-Reduce framework to use JAAS instead of UGI
- Resolved
-
MAPREDUCE-181 Secure job submission
- Closed
-
MAPREDUCE-1026 Shuffle should be secure
- Closed
-
HADOOP-4850 Fix IPC Client to not use UGI
- Resolved
-
HADOOP-4851 Change filesystem permissions to use JAAS rather than UGI
- Resolved
-
HADOOP-6151 The servlets should quote html characters
- Closed
-
MAPREDUCE-563 Security features for Map/Reduce
- Resolved
-
AVRO-341 specify avro transport in spec
- Open
-
GIRAPH-211 Add secure authentication to Netty IPC
- Resolved
-
HADOOP-4853 Improvement to IPC
- Resolved
-
HADOOP-3953 Sticky bit for directories
- Closed
-
HADOOP-4656 Add a user to groups mapping service
- Closed
-
HADOOP-6299 Use JAAS LoginContext for our login
- Closed
-
HBASE-1697 Discretionary access control
- Closed
-
HADOOP-9621 Document/analyze current Hadoop security model
- Open
- relates to
-
HADOOP-6572 RPC responses may be out-of-order with respect to SASL
- Closed
-
HADOOP-5405 Adding support for HDFS proxy
- Resolved
-
HADOOP-6581 Add authenticated TokenIdentifiers to UGI so that they can be used for authorization
- Resolved
-
HADOOP-4343 Adding user and service-to-service authentication to Hadoop
- Closed
-
HADOOP-4348 Adding service-level authorization to Hadoop
- Closed
-
HADOOP-4359 Access Token: Support for data access authorization checking on DataNodes
- Closed
-
HADOOP-6415 Adding a common token interface for both job token and delegation token
- Closed
-
HADOOP-6419 Change RPC layer to support SASL based mutual authentication
- Closed
-
HADOOP-6510 doAs for proxy user
- Closed
-
HDFS-992 Re-factor block access token implementation to conform to the generic Token interface in Common
- Closed
-
HDFS-1150 Verify datanodes' identities to clients in secure clusters
- Closed
-
MAPREDUCE-1335 Add SASL DIGEST-MD5 authentication to TaskUmbilicalProtocol
- Closed
-
MAPREDUCE-1338 need security keys storage solution
- Closed
-
ZOOKEEPER-938 Support Kerberos authentication of clients.
- Closed
-
HDFS-1305 Enabling Kerberos based authentication on BackupNode
- Open
-
HADOOP-4453 Improve ssl handling for distcp
- Closed
-
HADOOP-6367 Move Access Token implementation from Common to HDFS
- Closed
-
HADOOP-6543 Allow authentication-enabled RPC clients to connect to authentication-disabled RPC servers
- Closed
-
HADOOP-6584 Provide Kerberized SSL encryption for webservices
- Closed
-
HADOOP-6589 Better error messages for RPC clients when authentication fails
- Closed
-
MAPREDUCE-1250 Refactor job token to use a common token interface
- Closed
-
HADOOP-8357 Restore security in Hadoop 0.22 branch
- Resolved