[
https://issues.apache.org/jira/browse/HDFS-945?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12829211#action_12829211
]
Todd Lipcon commented on HDFS-945:
----------------------------------
bq. apps within trusted network that does not need to be paranoid about this
I disagree. It's very easy to write a well-meaning app that does awful things.
Certainly the limits should be configurable, but they should default on and be
set at a high enough threshold that they only trigger in a case where it would
make the NN fall over otherwise.
> Make NameNode resilient to DoS attacks (malicious or otherwise)
> ---------------------------------------------------------------
>
> Key: HDFS-945
> URL: https://issues.apache.org/jira/browse/HDFS-945
> Project: Hadoop HDFS
> Issue Type: Improvement
> Components: name-node
> Reporter: Arun C Murthy
>
> We've seen defective applications cause havoc on the NameNode, for e.g. by
> doing 100k+ 'listStatus' on very large directories (60k files) etc.
> I'd like to start a discussion around how we prevent such, and possibly
> malicious applications in the future, taking down the NameNode.
> Thoughts?
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
