· Current version of
Hadoop has very basic rudimentary implementation of security which is advisory access
control mechanism.
· Hadoop doesn’t strongly
authenticate the client, it simply asks the underlying Unix system by executing
`whoami` command
· Any one can communicate
directly with a Datanode (without the need for communicating with the Namenode)
and ask for blocks if you have the block location details (This was experimented
at the recent Cloudera's Hadoop Hackathon)
