Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

hive外部表目录权限问题

Labels:
avatar
author-rank gfsupp
New Contributor

Created ‎02-16-2022 07:15 PM

在CDP集群hive的外部仓库目录权限默认为1777,而内部仓库目录为0770,这样会出现一个问题,hive的外部仓库目录任何用户都可以写入数据问题。是设计就是这样还是起塔问题?

1,349 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank araujo author-rank
Super Guru

Created ‎02-17-2022 01:34 AM

This is the default when you deploy a new insecure cluster.

When you implement security you need to review these defaults and tighten security, including employing Ranger to protect, among other things, the HDFS data in external directories.

 

Cheers,

André

--
Was your question answered? Please take some time to click on "Accept as Solution" below this post.
If you find a reply useful, say thanks by clicking on the thumbs up button.

View solution in original post

1,312 Views
3 REPLIES 3

avatar
author-rank VidyaSargur author-rank
Community Manager

Created ‎02-17-2022 01:12 AM

English Translation: 

 

Title: hive external table directory permission problem


The default permission of the external warehouse directory of hive in the CDP cluster is 1777, while the internal warehouse directory is 0770. This will cause a problem that any user in the external warehouse directory of hive can write data. Is it just the design or is it a tower issue?


Regards,

Vidya Sargur,
Community Manager

Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Learn more about the Cloudera Community:
1,322 Views
0 Kudos

avatar
author-rank araujo author-rank
Super Guru

Created ‎02-17-2022 01:34 AM

This is the default when you deploy a new insecure cluster.

When you implement security you need to review these defaults and tighten security, including employing Ranger to protect, among other things, the HDFS data in external directories.

 

Cheers,

André

--
Was your question answered? Please take some time to click on "Accept as Solution" below this post.
If you find a reply useful, say thanks by clicking on the thumbs up button.
1,313 Views

avatar
author-rank VidyaSargur author-rank
Community Manager

Created ‎02-20-2022 09:19 PM

@gfsupp, Has the reply helped resolve your issue? If so, please mark the appropriate reply as the solution, as it will make it easier for others to find the answer in the future. 


Regards,

Vidya Sargur,
Community Manager

Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Learn more about the Cloudera Community:
1,281 Views
0 Kudos
Announcements
What's New @ Cloudera
[RELEASED] Cloudera Streaming Analytics 1.14 for Cloudera Pu...
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
View More Announcements