Uploaded image for project: 'Hadoop YARN'
  1. Hadoop YARN
  2. YARN-5280

Allow YARN containers to run with Java Security Manager

    Details

    • Target Version/s:
    • Hadoop Flags:
      Reviewed
    • Flags:
      Patch

      Description

      YARN applications have the ability to perform privileged actions which have the potential to add instability into the cluster. The Java Security Manager can be used to prevent users from running privileged actions while still allowing their core data processing use cases.
      Introduce a YARN flag which will allow a Hadoop administrator to enable the Java Security Manager for user code, while still providing complete permissions to core Hadoop libraries.

        Attachments

        1. YARNContainerSandbox.pdf
          188 kB
          Greg Phillips
        2. YARN-5280.patch
          17 kB
          Greg Phillips
        3. YARN-5280.008.patch
          63 kB
          Greg Phillips
        4. YARN-5280.007.patch
          62 kB
          Greg Phillips
        5. YARN-5280.006.patch
          60 kB
          Greg Phillips
        6. YARN-5280.005.patch
          57 kB
          Greg Phillips
        7. YARN-5280.004.patch
          43 kB
          Greg Phillips
        8. YARN-5280.003.patch
          40 kB
          Greg Phillips
        9. YARN-5280.002.patch
          39 kB
          Greg Phillips
        10. YARN-5280.001.patch
          39 kB
          Greg Phillips

          Activity

            People

            • Assignee:
              gphillips Greg Phillips
              Reporter:
              gphillips Greg Phillips
            • Votes:
              3 Vote for this issue
              Watchers:
              18 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: