[
https://issues.apache.org/jira/browse/KAFKA-2701?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14978486#comment-14978486
]
Ismael Juma commented on KAFKA-2701:
------------------------------------
That is correct, if you want a fully secure broker, you need to use SSL for
inter-broker communication and disable the PLAINTEXT port. If the PLAINTEXT
port is not disabled, it can be used by anyone.
> Consumer that uses Zookeeper to connect to Kafka broker, receives messages of
> server that is secured with SSL+Authentication
> ----------------------------------------------------------------------------------------------------------------------------
>
> Key: KAFKA-2701
> URL: https://issues.apache.org/jira/browse/KAFKA-2701
> Project: Kafka
> Issue Type: Bug
> Affects Versions: 0.9.0.0
> Reporter: Mohammad Abbasi
>
> I have a secured Kafka server with SSL+Authentication. Secured and
> authenticated consumers and producers work OK with this server and
> non-configured with SSL consumers and producer cannot send messages to or
> receive messages from secured Kafka server when they are connected
> "directly"(I mean not through the Zookeeper) to the server.
> But when non-authenticated consumer connects through Zookeeper to the broker,
> receives message from secured Kafka server. Is this a bug? or if it's OK, why
> non-authenticated consumer can receive messages from Kafka server which
> requires authentication through SSL?
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
