stackoom
  简体   繁体   中英

How to secure client connections to an HBase Thrift Server?

 原文  2015-10-31 00:46:41       python/ hbase/ thrift/ happybase

Question

Anyone who knows the port and host of a HBase Thrift server, and who has access to the network, can access HBase. This is a security risk. How can the client access to the HBase Thrift server be made secure?

2 answers

solution1
 1  2016-02-17 07:44:50

You could secure HBase Thrift server setting up authentication via kerberos and then setting this property in hbase-site.xml 

  <name>hbase.thrift.security.qop</name>
  <value>auth</value>

http://www.cloudera.com/documentation/enterprise/latest/topics/cdh_sg_hbase_authentication.html

solution2
 0  2016-02-17 06:00:33

My sysadmin told me that in theory he could install an HBase Thrift Server on one of the Hadoop edge nodes that are blocked off, and only open the port to my server via ACLs. He however has no intention of doing this (and I do not either). As this is not a suitable answer I'll leave the question open.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to use python thrift client to scan hbase table with maxversions? Hbase thrift2 python client API invalid thrift hbase client - support filters and coprocessors How to get client's IP in a python thrift server How to fix Hbase thrift hbase_thrift.ttypes.TIOError: TIOError(_message=“Can't get the location”) Python program to connect to HBase via thrift server in Http mode Trying to connect to Thrift server for Hbase. Getting the following error Connect a Thrift client to a Thrift server in separate docker containers on the same host Thrift client-server multiple roles Interface Python Thrift client with Go gRPC server
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM