Support Questions

Find answers, ask questions, and share your expertise

Master node has been compromised, is there way to keep the data?

Rising Star



So, this morning my master node got compromised by alot of hackers. They continued the brute-force attack causing the main server to block the access. I have four node cdh cluster (freeware), the concern now here is that my network administrator wants to re-install the host. I dont see any way to keep the stored data in HDFS as its not paid subscription. Can anyone help how could i save my data?




Rising Star
We are sorry to hear your cluster was compromised. Please see this recent security blog by Cloudera on malware attacks on un-secure Hadoop clusters [1]. Regardless of if you have a paid subscription, a distcp job can still be performed to another Hadoop cluster [2]. Please keep in mind that if the malware that has compromised your cluster has not yet been eradicated, and your target cluster is not secured with kerberos security as the blog mentions, there is a possibility your compromised cluster could be a source of attack to your target distcp cluster. As a last resort, you could possibly use hdfs dfs -copyToLocal for data that could fit into a local disk, then copy critical data elsewhere, in batches, prior to the remediation of the master node.




Robert Justice, Technical Resolution Manager

Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

Learn more about the Cloudera Community:

Terms of Service