[ https://issues.apache.org/jira/browse/HDFS-945?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12829211#action_12829211 ]
Todd Lipcon commented on HDFS-945: ---------------------------------- bq. apps within trusted network that does not need to be paranoid about this I disagree. It's very easy to write a well-meaning app that does awful things. Certainly the limits should be configurable, but they should default on and be set at a high enough threshold that they only trigger in a case where it would make the NN fall over otherwise. > Make NameNode resilient to DoS attacks (malicious or otherwise) > --------------------------------------------------------------- > > Key: HDFS-945 > URL: https://issues.apache.org/jira/browse/HDFS-945 > Project: Hadoop HDFS > Issue Type: Improvement > Components: name-node > Reporter: Arun C Murthy > > We've seen defective applications cause havoc on the NameNode, for e.g. by > doing 100k+ 'listStatus' on very large directories (60k files) etc. > I'd like to start a discussion around how we prevent such, and possibly > malicious applications in the future, taking down the NameNode. > Thoughts? -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.