Camus is effectively dead or dying. I haven't really seen much of a strong community develop around it since LinkedIn moved on really. Goblin which is indeed a brand new project that seems to have all of LinkedIn' focus. ... View more

Hi @Dim Guy so this is a reasonably complex process, depending on your knowledge of RPM building. First of all you'll need to grab the particular SRPM for the package you're interested in: https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.4.0/bk_HDP_Reference_Guide/content/ch03s05.html The above url covers the difference between the different types of source RPMs that Hortonworks provides. The next set of steps you'll need to follow is here: https://wiki.centos.org/HowTos/RebuildSRPM If you carefully follow this, you should be able to rebuild a new RPM containing the modifications you require. Good luck! ... View more

Hi there @Hassan Faouaz I had an exchange with a colleague of mine @Aaron Wiebe quite a while ago that I often refer back to whenever this topic comes up, I'll paste it below and can certainly answer questions on it if you have any as I'm pretty familiar with the approaches. I also know that people have built one-off chargeback/showback style dashboards etc that pull data from clusters, but they tend to be heavily bespoke in each case, not something that could be easily shared. Aaron's discussion on this topic is shown below: ------------------------------------------------------------------------------------------------------------------------------- There are effectively two portions to implementing a chargeback system for Hadoop. Building the Model The first is to build a full TCO model for the Hadoop implementation, inclusive of both capital and operational costs. From this number, you should be able to calculate a full cost per month to run the Hadoop system. Using the fully loaded cost per month, you then set two targets - and these targets are somewhat arbitrary: Target system utilization to reach a break-even cost metric - aka your target margin. For most people, this ranges from 60% to 80%. The goal of this target is to provide a realistic resource utilization point, but also give yourself space to initiate an expansion once you begin to run over an average utilization in a month which exceeds your target. The second target is a resource split, between CPU and space. This will be primarily driven on the intended use cases. Most people will split the costs at 75% storage and 25% CPU. Most want to encourage CPU use on the platform, meaning that analysis will be performed rather than simply using Hadoop as a storage mechanism. Once you've built this model, you can calculate two costs: the cost per GB of storage per month, and the cost per hour per GB of memory for CPU utilization. Implementing the Model This step is relatively easy in comparison to the first part. There are two ways to implement this model: charge by reservation or charge by use. Charging by reservation is fairly straightforward - a given use-case or customer will request a certain amount of space, and they will be provided a quota. They are then charged as if their quota was fully utilized, since it is reserved for their use. For CPU/Memory, the calculation can be based on full use of their processing queue over the month. Charging by use is more complex, and less common - however it is possible. Today, content from the logging subsystems will need to be pulled to determine usage for processing, and the filesystem will need to be traversed to determine usage. There are dangers in this approach in that users could, in theory, dump their datasets just before the end of the month - resulting in a skewed result, but that is also easy to detect. ... View more

Hi there @Rahul Pathak So there are really 3 components worth discussing in this topic: 1) Service level authorisation 2) Knox for access to Hadoop Services 3) Ranger for RBAC (Role Based Access Control) security policies. First of all, these can all be used together, they provide additional complementary security measures for Hadoop. Service Level Authorisation deals with the most basic set of permissions, all Hadoop services let you define the users and groups who are authorized to make RPC call to that service. Only if the user making RPC call belongs to authorized service user/group, the RPC call will go through. Once someone is through however, there is no further check made. Knox takes this up a level and exposes user/group based policies for access to Hadoop services (Hive, HDFS, Storm etc) in a far easier way, the policy is created and applied by Ranger and enacted by Knox, this is true perimeter security as users can therefore be denied before they are able to even connect to the Hadoop cluster. Ranger then gives the final level of granularity, once someone is granted access to a particular service, you can then control at a very granular level which Hive databases, tables and table colums they have access to, HDFS paths and the level of access, Kafka queues and much much more. This gives you fine grain control over the exact data and services you wish your users to be granted access to. Hope that helps. ... View more