Introduction
Hadoop Distributed File System (HDFS)
Map Reduce programming model
Security features in Hadoop and its limitations
Apache Knox
Apache Sentry
Apache Ranger
Kerberos
Limitations of existing security features in Apache Hadoop
More vulnerabilities in Apache Hadoop
Method applied
Sandbox Security for Map Reduce jobs
Results and discussion
Sno | Nature of Jar submitted to sandbox | Sandbox security outcome |
---|---|---|
1 | Conventional word count jar | Allowed to execute |
2 | Jar containing mapper which used fsck command to enquire about file blocks | Not allowed to execute |
3 | Jar containing mapper which used expunge, name node safe mode enter | Not allowed to execute |
4 | NlineInputDemo is a jar file to process .csv file | Allowed to execute |