Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search

Master node has been compromised, is there way to keep the data?

hadoopNoob
Rising Star

Created on ‎01-03-2019 02:24 AM - edited ‎09-16-2022 07:01 AM

Hello,

 

So, this morning my master node got compromised by alot of hackers. They continued the brute-force attack causing the main server to block the access. I have four node cdh cluster (freeware), the concern now here is that my network administrator wants to re-install the host. I dont see any way to keep the stored data in HDFS as its not paid subscription. Can anyone help how could i save my data?

 

Thanks

809 Views
0 Kudos
1 REPLY 1

Robert Justice
Rising Star

Created ‎01-03-2019 08:10 AM

We are sorry to hear your cluster was compromised. Please see this recent security blog by Cloudera on malware attacks on un-secure Hadoop clusters [1]. Regardless of if you have a paid subscription, a distcp job can still be performed to another Hadoop cluster [2]. Please keep in mind that if the malware that has compromised your cluster has not yet been eradicated, and your target cluster is not secured with kerberos security as the blog mentions, there is a possibility your compromised cluster could be a source of attack to your target distcp cluster. As a last resort, you could possibly use hdfs dfs -copyToLocal for data that could fit into a local disk, then copy critical data elsewhere, in batches, prior to the remediation of the master node.

[1] https://blog.cloudera.com/blog/2018/11/protecting-hadoop-clusters-from-malware-attacks/

[2] https://www.cloudera.com/documentation/enterprise/latest/topics/cdh_admin_distcp_data_cluster_migrat...

[3] https://archive.cloudera.com/cdh5/cdh/5/hadoop/hadoop-project-dist/hadoop-common/FileSystemShell.htm...


Robert Justice, Technical Resolution Manager


Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.

Learn more about the Cloudera Community:

Terms of Service

787 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
Community Announcements
March 2023 Community Highlights
What's New @ Cloudera
Cloudera DataFlow Designer for self-service data flow development is now generally available to all CDP Public Cloud customers
What's New @ Cloudera
Cloudera Operational Database (COD) UI provides the JWT configuration details to connect to your HBase client
What's New @ Cloudera
Cloudera Operational Database (COD) UI allows storage type selection when creating an operational database
What's New @ Cloudera
Release of Cloudera Streaming Analytics (CSA) 1.9.0 for CDP 7.1.7 SP2 & CDP 7.1.8
View More Announcements