[ 
https://issues.apache.org/jira/browse/HADOOP-1873?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12530575
 ] 

Owen O'Malley commented on HADOOP-1873:
---------------------------------------

> That's not clear to me. Can't we make the system directory world-writable but 
> readable only by 
> the jobtracker/tasktracker user?

I assume you mean that the system directory is rwx-wx-wx so that you can create 
directories in it, but not scan what is there? Even so, the job directory under 
the system dir would need to be world readable and writable so that the job 
tracker can read it and delete it when the job is done.  But you don't want the 
users to be able to guess the directory names and grab each other's tickets by 
looking at their job.xmls. I suspect that we just need to send the JobConf and 
input splits via rpc.


> User permissions for Map/Reduce
> -------------------------------
>
>                 Key: HADOOP-1873
>                 URL: https://issues.apache.org/jira/browse/HADOOP-1873
>             Project: Hadoop
>          Issue Type: Improvement
>            Reporter: Raghu Angadi
>            Assignee: Raghu Angadi
>
> HADOOP-1298 and HADOOP-1701 add permissions and pluggable security for DFS 
> files and DFS accesses. Same users permission should work for Map/Reduce jobs 
> as well. 
> User persmission should propegate from client to map/reduce tasks and all the 
> file operations should be subject to user permissions. This is transparent to 
> the user (i.e. no changes to user code should be required). 

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Reply via email to