- Threat ID
- Threat Date
- Threat Name
- MapReduce cluster administrators
- CVE Reference
- CCE Reference
- Database Type
- Improper Access Controls
- All versions of Hadoop
- Property mapreduce.cluster.administrators contains an ACL that defines users and groups that are granted MapReduce cluster administration privileges. This list should be audited and maintained by the admin.
- Property mapreduce.cluster.administrators in file mapred-site.xml define a list of accounts and groups that are cluster administrators. These users have administration privileges and should be audited by the system admin.
Default value is undefined, which means there are no special privileged accounts/groups for MapReduce cluster.
Property value is formatted as an ACL: a list of accounts and a list of groups, separated by a space. The special character "*" can be used to indicate all users.
Additional information including fix script information is available in the licensed versions of Application Security's DbProtect and AppDetectivePro solutions.