[jira] [Commented] (HDFS-3680) Allows customized audit logging in HDFS FSNamesystem

Thu, 02 Aug 2012 06:55:03 -0700 

    [ 
https://issues.apache.org/jira/browse/HDFS-3680?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13427325#comment-13427325
 ] 

Daryn Sharp commented on HDFS-3680:
-----------------------------------

Just throwing a raw idea out there that might address many of the concerns:
* The NN has an option for an external logger daemon
* HDFS provides the optional audit daemon maybe as a simple RPC server
* The audit data is encoded in a protobuf, json, etc to avoid unreliable parsing
* The custom audit logger(s) implement a interface similar to that in the patch

Advantages for the NN:
* Isolated from dangerous code that might call System.exit, segfault in native 
code, etc
* Isolated from leaky code
* If RPC is used, we can leverage secure auth, configurable retries, perhaps 
failover, etc
                
> Allows customized audit logging in HDFS FSNamesystem
> ----------------------------------------------------
>
>                 Key: HDFS-3680
>                 URL: https://issues.apache.org/jira/browse/HDFS-3680
>             Project: Hadoop HDFS
>          Issue Type: Improvement
>          Components: name-node
>    Affects Versions: 2.0.0-alpha
>            Reporter: Marcelo Vanzin
>            Assignee: Marcelo Vanzin
>            Priority: Minor
>         Attachments: accesslogger-v1.patch, accesslogger-v2.patch, 
> hdfs-3680-v3.patch, hdfs-3680-v4.patch, hdfs-3680-v5.patch
>
>
> Currently, FSNamesystem writes audit logs to a logger; that makes it easy to 
> get audit logs in some log file. But it makes it kinda tricky to store audit 
> logs in any other way (let's say a database), because it would require the 
> code to implement a log appender (and thus know what logging system is 
> actually being used underneath the façade), and parse the textual log message 
> generated by FSNamesystem.
> I'm attaching a patch that introduces a cleaner interface for this use case.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

Reply via email to