Hi all,
Due to a recent security report, I’ve decided to disable public access to
the Yarn HTTP UI. There was no security breach, but I was made aware of
the ability to do more with the HTTP interface than I had previously known
about, and I wasn’t comfortable with it being public anymore. The YARN
ResourceManaager HTTP interface is still accessible from within the
analytics cluster. I’ve just disabled the public proxying at
yarn.wikimedia.org.
If you want to access the ResourceManager job browser, you’ll have to ssh
tunnel into the cluster first. Instructions are here:
https://wikitech.wikimedia.org/wiki/Analytics/Cluster/Access#ssh_tunnel.28s…
-Andrew Otto