Home | About | Sematext search-lucene.com search-hadoop.com
NEW: Monitor These Apps!
elasticsearch, apache solr, apache hbase, hadoop, redis, casssandra, amazon cloudwatch, mysql, memcached, apache kafka, apache zookeeper, apache storm, ubuntu, centOS, red hat, debian, puppet labs, java, senseiDB
 Search Hadoop and all its subprojects:

Switch to Plain View
Chukwa >> mail # user >> Securing the Communication


+
James K Kochuba 2010-08-22, 15:13
Copy link to this message
-
Re: Securing the Communication
Howdy!

The developers have talked about this a bit.  I don't believe any
developers are currently working on either. If you want to tackle it,
that would be great, and there's already an open JIRA with some notes:
https://issues.apache.org/jira/browse/CHUKWA-434

By the way, it's possible to tell agents to only accept local control
connections, which should help with security.

Right now, agent control is a custom ad-hoc protocol. It might be
easier to add security once a RESTful interface is in place. This was
discussed recently, but I don't know the time line for implementation.

--Ari

On Sun, Aug 22, 2010 at 8:13 AM, James K Kochuba <[EMAIL PROTECTED]> wrote:
> Does anyone know if/when Chukwa is looking at securing the communication
> between the agents and collectors?
> This would be:
> 1) encrypting the connection communication
> 2) authenticating the agents to the specific collector
>
> If this is not in plan, does anyone have recommendations on the best way to
> modify the chukwa code to provide this capability?
>
> Thanks,
>
> James

--
Ari Rabkin [EMAIL PROTECTED]
UC Berkeley Computer Science Department
+
Eric Yang 2010-08-23, 16:53
NEW: Monitor These Apps!
elasticsearch, apache solr, apache hbase, hadoop, redis, casssandra, amazon cloudwatch, mysql, memcached, apache kafka, apache zookeeper, apache storm, ubuntu, centOS, red hat, debian, puppet labs, java, senseiDB