> On April 2, 2014, 5:44 p.m., Josh Elser wrote: > > docs/src/main/resources/design/ACCUMULO-378-design.mdtext, line 62 > > <https://reviews.apache.org/r/19862/diff/1/?file=543190#file543190line62> > > > > Need to consider what kind of authentication/authorization is done > > before the slave will accept data from a "master". > > > > The master needs to know the slave's secret? > > Mike Drob wrote: > If we are not encrypting this communication, as stated in the "non-goals" > section, then I am very uncomfortable with sending a cluster secret over the > wire.
Well, it wouldn't have to be the instance.secret. It could be some extra configuration piece. Although, that's really only adding obscurity, so is there really any (meaningful) added benefit of accepting connections from anyone? - Josh ----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/19862/#review39304 ----------------------------------------------------------- On April 1, 2014, 1:58 a.m., Josh Elser wrote: > > ----------------------------------------------------------- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/19862/ > ----------------------------------------------------------- > > (Updated April 1, 2014, 1:58 a.m.) > > > Review request for accumulo. > > > Bugs: ACCUMULO-378 > https://issues.apache.org/jira/browse/ACCUMULO-378 > > > Repository: accumulo > > > Description > ------- > > Re-posting a version of the design doc that I own. Contains grammatical fixes > from round one, with a few extra clarifications. New content should be posted > here, but I'll maintain the old review as discussion progresses. > > > Diffs > ----- > > docs/src/main/resources/design/ACCUMULO-378-design.mdtext PRE-CREATION > > Diff: https://reviews.apache.org/r/19862/diff/ > > > Testing > ------- > > > Thanks, > > Josh Elser > >
