How would you propose we use SELinux features to support security,
especially in a distributed manner where clients might be under different
administrative controls? What about the non-Linux platforms that Hadoop runs
on?
On Mar 26, 2015, at 3:46 AM, Madhan Sundararajan <[email protected]>
wrote:
> Team,
>
> SELINUX was introduced to bring in a robust security management in Linux
> OS.
>
> In all distributions of Hadoop (Cloudera/Hortonworks/...) one of the
> pre-installation checklist items is to disable SELINUX in all the nodes of
> the cluster.
>
> Why not re-use the security model offered by SELINUX setting instead of
> re-inventing from scratch through Sentry/Knox/etc...?
>
> Regards
> Madhan Sundararajan Devaki
>
> Tata Consultancy Services Limited
> 415/21-24, Kumaran Nagar,
> Sholinganallur,
> Old Mahabalipuram,
> Chennai - 600 119,Tamil Nadu
> India
> Cell:- +91-9840141129
> Mailto: [email protected]
> Website: http://www.tcs.com
> ____________________________________________
> Experience certainty. IT Services
> Business Solutions
> Consulting
> ____________________________________________
> =====-----=====-----=====
> Notice: The information contained in this e-mail
> message and/or attachments to it may contain
> confidential or privileged information. If you are
> not the intended recipient, any dissemination, use,
> review, distribution, printing or copying of the
> information contained in this e-mail message
> and/or attachments to it are strictly prohibited. If
> you have received this communication in error,
> please notify us by reply e-mail or telephone and
> immediately and permanently delete the message
> and any attachments. Thank you
>
>