Support Questions

Find answers, ask questions, and share your expertise
Announcements
Celebrating as our community reaches 100,000 members! Thank you!

hive外部表目录权限问题

avatar
New Contributor

在CDP集群hive的外部仓库目录权限默认为1777,而内部仓库目录为0770,这样会出现一个问题,hive的外部仓库目录任何用户都可以写入数据问题。是设计就是这样还是起塔问题?

1 ACCEPTED SOLUTION

avatar
Super Guru

This is the default when you deploy a new insecure cluster.

When you implement security you need to review these defaults and tighten security, including employing Ranger to protect, among other things, the HDFS data in external directories.

 

Cheers,

André

--
Was your question answered? Please take some time to click on "Accept as Solution" below this post.
If you find a reply useful, say thanks by clicking on the thumbs up button.

View solution in original post

3 REPLIES 3

avatar
Community Manager

English Translation: 

 

Title: hive external table directory permission problem


The default permission of the external warehouse directory of hive in the CDP cluster is 1777, while the internal warehouse directory is 0770. This will cause a problem that any user in the external warehouse directory of hive can write data. Is it just the design or is it a tower issue?



Regards,

Vidya Sargur,
Community Manager


Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Learn more about the Cloudera Community:

avatar
Super Guru

This is the default when you deploy a new insecure cluster.

When you implement security you need to review these defaults and tighten security, including employing Ranger to protect, among other things, the HDFS data in external directories.

 

Cheers,

André

--
Was your question answered? Please take some time to click on "Accept as Solution" below this post.
If you find a reply useful, say thanks by clicking on the thumbs up button.

avatar
Community Manager

@gfsupp, Has the reply helped resolve your issue? If so, please mark the appropriate reply as the solution, as it will make it easier for others to find the answer in the future. 



Regards,

Vidya Sargur,
Community Manager


Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Learn more about the Cloudera Community: