ayushtkn commented on PR #5464: URL: https://github.com/apache/hadoop/pull/5464#issuecomment-1474357461
The only policy around Audit logs that I am aware of, they shouldn't change and the parsers should be able to parse them, So, if we make the format similar to that of the HDFS ones, that should be good but still not a strict ask. Regarding logging `success`, we do log successful result everytime, it is just the failure which get logs only for ACE. Why only ACE has historical reasons, which we can decide here, if we want to go with that approach in RBF also or not, whatever we choose is good, it is just we can't change it once released. One main reason for only ACE was: We are always interested In successful cases, since that change the state of the FS, other failure we don't care because they didn't do anything, for RPC load or so use the NamenodeMetrics. ACE finds special attention as it is bit alarming: that someone who doesn't have access attempted to do some operation, "Some illegal guy in the town trying to do operation X, which he ain't allowed to do" That is what I know, that is very old stuff, will research sometime more about that.... -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org
