Sumod Pawgi created CASSANDRA-9333:
--------------------------------------
Summary: Edge case - Empty of blank password for JMX
authentication not handled properly in nodetool commands
Key: CASSANDRA-9333
URL: https://issues.apache.org/jira/browse/CASSANDRA-9333
Project: Cassandra
Issue Type: Bug
Components: Core, Tools
Environment: Apache Cassandra 2.1.2
Reporter: Sumod Pawgi
Priority: Minor
While setting up JMX authentication for Apache Cassandra, if we set the
password blank (in the file - jmxremote.password), nodetool commands do not work
example creds are cassandra cassandra. In this case, for a secured cluster, we
run the nodetool command as - nodetool -u cassandra -pw cassandra status
But if the password is kept as blank then we cannot execute nodetool command.
However, I believe that if a third party software used JMX authentication via
API, then they can use blank password for the operations. So this behavior
needs to be clarified and be consistent for this edge case scenario.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
