Hadoop Questions and Answers – Security

This set of Hadoop Multiple Choice Questions & Answers (MCQs) focuses on “Security”.

1. For running hadoop service daemons in Hadoop in secure mode ___________ principals are required.
a) SSL
b) Kerberos
c) SSH
d) None of the mentioned
View Answer

Answer: b
Explanation: Each service reads authenticate information saved in keytab file with appropriate permission.

2. Point out the correct statement.
a) Hadoop does have the definition of group by itself
b) MapReduce JobHistory server run as same user such as mapred
c) SSO environment is managed using Kerberos with LDAP for Hadoop in secure mode
d) None of the mentioned
View Answer

Answer: c
Explanation: You can change a way of mapping by specifying the name of mapping provider as a value of hadoop.security.group.mapping.

3. The simplest way to do authentication is using _________ command of Kerberos.
a) auth
b) kinit
c) authorize
d) all of the mentioned
View Answer

Answer: b
Explanation: HTTP web-consoles should be served by principal different from RPC’s one.

4. Data transfer between Web-console and clients are protected by using _________
a) SSL
b) Kerberos
c) SSH
d) None of the mentioned
View Answer

Answer: a
Explanation: AES offers the greatest cryptographic strength and the best performance.

advertisement
advertisement

5. Point out the wrong statement.
a) Data transfer protocol of DataNode does not use the RPC framework of Hadoop
b) Apache Oozie which access the services of Hadoop on behalf of end users need to be able to impersonate end users
c) DataNode must authenticate itself by using privileged ports which are specified by dfs.datanode.address and dfs.datanode.http.address
d) None of the mentioned
View Answer

Answer: d
Explanation: Authentication is based on the assumption that the attacker won’t be able to get root privileges.

6. In order to turn on RPC authentication in hadoop, set the value of hadoop.security.authentication property to _________
a) zero
b) kerberos
c) false
d) none of the mentioned
View Answer

Answer: b
Explanation: Security settings need to be modified properly for robustness.

7. The __________ provides a proxy between the web applications exported by an application and an end user.
a) ProxyServer
b) WebAppProxy
c) WebProxy
d) None of the mentioned
View Answer

Answer: b
Explanation: If security is enabled it will warn users before accessing a potentially unsafe web application. Authentication and authorization using the proxy is handled just like any other privileged web application.

8. ___________ used by YARN framework which defines how any container launched and controlled.
a) Container
b) ContainerExecutor
c) Executor
d) All of the mentioned
View Answer

Answer: b
Explanation: The container process has the same Unix user as the NodeManager.

advertisement

9. The ____________ requires that paths including and leading up to the directories specified in yarn.nodemanager.local-dirs.
a) TaskController
b) LinuxTaskController
c) LinuxController
d) None of the mentioned
View Answer

Answer: b
Explanation: LinuxTaskController keeps track of all paths and directories on datanode.

10. The configuration file must be owned by the user running _________
a) DataManager
b) NodeManager
c) ValidationManager
d) None of the mentioned
View Answer

Answer: b
Explanation: To recap, local file-system permissions need to be modified.

advertisement

Sanfoundry Global Education & Learning Series – Hadoop.

Here’s the list of Best Books in Hadoop.

If you find a mistake in question / option / answer, kindly take a screenshot and email to [email protected]

advertisement
advertisement
Subscribe to our Newsletters (Subject-wise). Participate in the Sanfoundry Certification contest to get free Certificate of Merit. Join our social networks below and stay updated with latest contests, videos, internships and jobs!

Youtube | Telegram | LinkedIn | Instagram | Facebook | Twitter | Pinterest
Manish Bhojasia - Founder & CTO at Sanfoundry
Manish Bhojasia, a technology veteran with 20+ years @ Cisco & Wipro, is Founder and CTO at Sanfoundry. He lives in Bangalore, and focuses on development of Linux Kernel, SAN Technologies, Advanced C, Data Structures & Alogrithms. Stay connected with him at LinkedIn.

Subscribe to his free Masterclasses at Youtube & discussions at Telegram SanfoundryClasses.