[Gluster-devel] Attackers hitting vulnerable HDFS installations
Emmanuel Dreyfus
manu at netbsd.org
Fri Feb 10 08:56:42 UTC 2017
On Thu, Feb 09, 2017 at 03:53:52PM -0500, Jeff Darcy wrote:
> https://www.theregister.co.uk/2017/02/09/hadoop_clusters_fked/
> Similar attacks have occurred against MongoDB and ElasticSearch.
> How long before they target us? How will we do?
It is true default glusterfs installation is too open. A simple
solution would be to introduce an access control, either by
IP whitelist, or better by shared secret.
The obvious problem is that it breaks updates. At least peer
know each others and could agree on automatically creating
a shared secret if it is missing, but we need to break clients.
The annoyance can be mitigated with an helpful message on mount
failure, in the log and on stdout such as "please copy
/etc/glusterd/secret from a server"
--
Emmanuel Dreyfus
manu at netbsd.org
More information about the Gluster-devel
mailing list