Log4j 1.x should generally not be used anymore. Since it is officially not
maintained anymore it is very unlikely that someone will report vulnerabilities
on it as they won’t be fixed anyway. Best would be to upgrade to latest log4j
2.17 or later.
> Am 18.12.2021 um 23:00 schrieb Rusty Deaton
Kerberos can be quite a beast for any application. I managed to use Kerberos
authentication for Zookeeper a couple of times. Usually the error messages in
Java are meaningless.
Did you register the service principal correctly in your AD/KDC?
If AD then did you make sure that the attribute for t
Thanks . It is strange that JDK 11.0.6 has a backwards incompatible change.
However, it would be sad if we are stuck all the time with JDK 11.0.5.
> Am 20.02.2020 um 10:53 schrieb Szalay-Bekő Máté :
>
> Hi Guys,
>
> I think the 'reverse order startup failure' actually has the very same root
>
This might be a wide shot and I did not see exactly the same error, but with
corretto jdk 11.0.6 I had also issue that ZK could not a quorum. I downgraded
to 11.0.5 and it did not have an issues. This was on ZK 3.5.5 with Kerberos
authentication and authorization.
> Am 19.02.2020 um 13:27 schri
at
> >>>
> >>
> io.netty.channel.DefaultChannelPipeline$HeadContext.channelRead(DefaultChannelPipeline.java:1422)
> >>>at
> >>>
> >>
> io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.
That looks like great work. In order to address the issues, why not build on
top of curator (https://curator.apache.org)?
I could support in case question rise with SASL, but I am not sure yet if I
find the time to actively develop for this unfortunately
> Am 18.11.2019 um 15:25 schrieb Jordan
I think, but I am not sure, you have to mention both users in the setAcl at the
same time, so they get different permissions.
Try also to update ZK.
Please also check if you can use the other authorization mechanisms, eg SASL or
x509. I think they are more suitable for Enterprise scenarios.
>
, this way you
> can configure only one client port and accept plain text and TLS connection
> from clients (this helps the ttransition to TLS)
>
> Enrico
>
> Il mer 6 nov 2019, 22:28 Jörn Franke ha scritto:
>
>> Dear all,
>>
>> it seems that ZooKeeper
Dear all,
it seems that ZooKeeper 3.5 with SSL enabled does not support Kerberos
authentication, but only X509 authentication. Kerberos is used in many
Enterprise environments and is supported by Apache Solr. Is this a bug? Or
am I missing something?
I created a Jira for this:
https://issues.apa
five 3.5.5 nodes), let them sync and then kill off the old 3.4.11 boxes?
>
> Thanks,
> Jerry
>
>> On Wed, Oct 2, 2019 at 12:29 PM Jörn Franke wrote:
>>
>> Have you tried to stop the node, delete the data and log directory,
>> upgrade to 3.5.5 , start the node an
I can confirm that a rolling update from Zk 3.4 to ZK 3.5 is possible if and
only if a ZK ensemble is used. standalone updates may introduce difficulties.
Of course I cannot tell for all possible setups, but for a ZK ensemble with
multiple Solr instances it is possible.
> Am 03.10.2019 um 14:55
Have you tried to stop the node, delete the data and log directory, upgrade to
3.5.5 , start the node and wait until it is synchronized ?
> Am 02.10.2019 um 20:14 schrieb Jerry Hebert :
>
> Hi all,
>
> My first post here! I'm hoping you all might be able to offer some guidance
> or redirect me
ls. Any suggestions?
>
> Thank you,
> Yue
>
>> On Fri, Sep 27, 2019 at 10:39 AM Jörn Franke wrote:
>>
>> Put the Solr request on a SQS queue using your 10k instances and have 10
>> or so worker working on the queue to put it in Solr. Having 10k connections
>&g
Put the Solr request on a SQS queue using your 10k instances and have 10 or so
worker working on the queue to put it in Solr. Having 10k connections just
because lambda creates that many instances does not make sense for no database
service.
> Am 27.09.2019 um 19:01 schrieb Yue Shen :
>
> Dea
the github page, it seems there is a JMX method to force
> the creation of a snapshot. Yet the docker image is configured as such that
> a port will never be assigned to the JMX process.
>
> Is there any way to bypass this?
>
>> On Tue, Jul 30, 2019 at 8:51 AM Jörn Franke wro
Hi,
I have zookeeper 3.5.5 working fine, but there are some issues related to ssl
on secureClient port. If I connect to the normal unsecured client port there is
no issue, but if I connect to the secureClientPort then I receive the “Len
error” . I do increase the jute.maxbuffer and that works o
Could be a Solr issue. Check the Solr mailing list - they can help you there
better on Solr issues.
> Am 31.07.2019 um 04:27 schrieb Zheng Lin Edwin Yeo :
>
> Thanks everyone for your reply.
>
> I have tried to put the following in zoo.cfg under ZooKeeper:
> 4lw.commands.whitelist=mntr,conf,ruo
Hi,
I have a kerberized Zookeeper cluster and would like to add SSL on the
client side and to the quorum.
So far the server configuration is clear. However, according to
https://cwiki.apache.org/confluence/display/ZOOKEEPER/ZooKeeper+SSL+User+Guide
I need to specify on the client side
zookeeper.
Thanks. It is possible to force Zookeeper to create a snapshot? I will check I
think the snapshot count is set to 1 in the cfg
> Am 30.07.2019 um 08:06 schrieb Enrico Olivelli :
>
> Il giorno lun 29 lug 2019 alle ore 23:59 Jörn Franke
> ha scritto:
>
>> ok, then let me
Maybe the Solr mailing list should address this.
> Am 30.07.2019 um 04:08 schrieb Zheng Lin Edwin Yeo :
>
> Hi,
>
> I am using the new Solr 8.2.0 with SolrCloud and external ZooKeeper 3.5.5.
>
> However, after adding in the line under zoo.cfg
> *4lw.commands.whitelist=**
>
> I get the error u
3.5.5 compared to 3.4.14?
>
> Not I am aware of. There are some format changes (added compression
> support) in master branch, but that's not shipped with 3.5.5.
>
>
>
> On Mon, Jul 29, 2019 at 2:31 PM Jörn Franke wrote:
>
> > ok, then it affects basically all sta
xn log files and let the node sync
> the snapshot from the quorum.
>
>
> On Mon, Jul 29, 2019 at 1:38 PM Enrico Olivelli
> wrote:
>
> > Il lun 29 lug 2019, 22:32 Jörn Franke ha scritto:
> >
> > > It also seems that 3.5.5 does not attempt to read all of the
It also seems that 3.5.5 does not attempt to read all of the logfiles (I
have to still confirm), but the two it reads exist, it has access and they
are much more than 0 byte
On Mon, Jul 29, 2019 at 10:13 PM Jörn Franke wrote:
> (of course i do not run them at the same time)
>
> On Mo
(of course i do not run them at the same time)
On Mon, Jul 29, 2019 at 10:10 PM Jörn Franke wrote:
> thank you for the quick reply. They read from the same disk paths and have
> the same access rights (in fact the RHEL service executes them as the same
> specific user).
>
> On Mo
thank you for the quick reply. They read from the same disk paths and have
the same access rights (in fact the RHEL service executes them as the same
specific user).
On Mon, Jul 29, 2019 at 10:09 PM Enrico Olivelli
wrote:
> Il lun 29 lug 2019, 21:50 Jörn Franke ha scritto:
>
> > H
Hi,
I tried to migrate a lab environment from Zookeepr 3.4.14 (used for Solr)
to 3.5.5 and encountered an issue. It is ZooKeeper in standalone mode
(other environments have a proper ensemble). I increased jute.maxbuffer
beyond the default (but not excessively) - this was working perfectly fine
in
26 matches
Mail list logo