[
https://issues.apache.org/jira/browse/SOLR-4580?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14088929#comment-14088929
]
Per Steffensen commented on SOLR-4580:
--------------------------------------
Happy to see some activity on this one. It might not be a feature that many
will use - it is for the extra paranoid, but it would be nice to support it in
Solr. We have been using it for a long time and it works like a charm. We use
it with a chroot (/solr) so there might be a few things that need a twist if
you want your solr stuff directly in the root of ZK. We dont want that because
we have numerous other non-Solr stuff in ZK for which we use separate sets of
username/password, so that the different applications do not accidently mess up
or see each others ZK content. I would recommend in general that Solr users do
not keep the Solr content directly in ZK root.
The support for custom impl is important for us. We are very paranoid and have
an implementation where admins punch in password when they start Solr. The
passwords are streamed into Solr and split secs after Solr has been started the
passwords exist nowhere but in JVM memory. Not on command-line, not in
config-files or any other places.
In lack of better ZK clients (let me know if you know any good ZK clients) I
use
http://www.massedynamic.org/mediawiki/index.php?title=Eclipse_Plug-in_for_ZooKeeper
(update site: http://www.massedynamic.org/eclipse/updates/) Eclipse plugin for
messing around in ZK. It is not perfect (can be a little slow at times), but it
works ok. It might be of value for you to use that as well.
Let me know if you need any help.
> Support for protecting content in ZK
> ------------------------------------
>
> Key: SOLR-4580
> URL: https://issues.apache.org/jira/browse/SOLR-4580
> Project: Solr
> Issue Type: New Feature
> Components: SolrCloud
> Affects Versions: 4.2
> Reporter: Per Steffensen
> Assignee: Mark Miller
> Labels: security, solr, zookeeper
> Attachments: SOLR-4580.patch, SOLR-4580.patch,
> SOLR-4580_branch_4x_r1482255.patch
>
>
> We want to protect content in zookeeper.
> In order to run a CloudSolrServer in "client-space" you will have to open for
> access to zookeeper from client-space.
> If you do not trust persons or systems in client-space you want to protect
> zookeeper against evilness from client-space - e.g.
> * Changing configuration
> * Trying to mess up system by manipulating clusterstate
> * Add a delete-collection job to be carried out by the Overseer
> * etc
> Even if you do not open for zookeeper access to someone outside your "secure
> zone" you might want to protect zookeeper content from being manipulated by
> e.g.
> * Malware that found its way into secure zone
> * Other systems also using zookeeper
> * etc.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
