Skip to content

Use -p 9000:9000 (and hide 8088) when launch hadoop #1317

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 2, 2021
Merged

Use -p 9000:9000 (and hide 8088) when launch hadoop #1317

merged 1 commit into from
Mar 2, 2021

Conversation

yongtang
Copy link
Member

@yongtang yongtang commented Mar 2, 2021

This PR will try to resolve the issue related to:

Vulnerability Description
Hadoop Yarn Unauthenticated ResourceManager API
Hadoop Yarn ResourceManager controls the computation and storage resources of a Hadoop cluster.
Exposing the ResourceManager API without authentication allows any remote user to create and execute arbitrary applications on the host.
Affected asset(s):
<ip>:8088 VM Instance kokoro-gcp-ubuntu-prod-<number> in GCP project kokoro project_number: <number>

Signed-off-by: Yong Tang yong.tang.github@outlook.com

@yongtang
Use -p 9000:9000 (and hide 8088) when launch hadoop
bc72271 
This PR will try to resolve the issue related to:
```
Vulnerability Description
Hadoop Yarn Unauthenticated ResourceManager API
Hadoop Yarn ResourceManager controls the computation and storage resources of a Hadoop cluster.
Exposing the ResourceManager API without authentication allows any remote user to create and execute arbitrary applications on the host.
Affected asset(s):
<ip>:8088 VM Instance kokoro-gcp-ubuntu-prod-<number> in GCP project kokoro project_number: <number>
```

Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
@yongtang
Copy link
Member Author

yongtang commented Mar 2, 2021

/cc @jsimsa FYI

@yongtang yongtang merged commit b00c128 into tensorflow:master Mar 2, 2021
@yongtang yongtang deleted the hadoop-resource-manager-fix branch March 2, 2021 16:23
i-ony pushed a commit to i-ony/io that referenced this pull request Mar 8, 2021
@yongtang @i-ony
Use -p 9000:9000 (and hide 8088) when launch hadoop (tensorflow#1317)
7fd89fd
michaelbanfield pushed a commit to michaelbanfield/io that referenced this pull request Mar 30, 2021
@yongtang @michaelbanfield
Use -p 9000:9000 (and hide 8088) when launch hadoop (tensorflow#1317)
fb5cab8
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@terrytangyuan terrytangyuan terrytangyuan approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@yongtang @terrytangyuan