Workload misconfigurations

Apache Spark configuration without encryption

Risk Level

Informational (4)

Platform(s)
  • N/A

Description

We have detected an Apache Spark configuration file on the system which doesn't support encryption. Allowing connections without encryption can expose sensitive data to unauthorized users.
  • Recommended Mitigation

    Add encryption support to the 'spark-defaults.conf' file