On Mon, Nov 21, 2005 at 01:23:45PM +0000 or thereabouts, Mike 'Mike' Jones wrote:
> Hi folks,
>
> I've been asked by the NGS ops to ask this forum if GridPP has taken any
> action as regards to the advice on the Globus web pages here:
> http://www.globus.org/toolkit/docs/4.0/info/prewsmds/pr01.html
>
> To summarise this page: it recommends not using MDS2.X distributed by
> Globus (and indeed VDT) because it relies upon OpenLDAP and Cyrus SASL
> packages that are now very old.
>
> The most significant advisory I have found so far is here:
> http://www.us-cert.gov/cas/bulletins/SB05-061.html#cyrus
>
> If action has been taken would you be able to provide any details.
We don't use a SSL secure MDS server anyway which is of course a completey
different problem but we avoid the SASL issue as a result.
As for the OpenLDAP problem this should be followed up. I'll do so.
VDT does patch Globus many times over and we would normally rely on
them to some extent.
http://vdt.cs.wisc.edu/advisories/index.html
for instances contains the fairly recent GSI-SSH situation resolved.
Steve
Steve
>
> Many thanks,
>
> Mike
>
>
>
> --
> http://www.sve.man.ac.uk/General/Staff/jonesM/
--
Steve Traylen
[log in to unmask]
http://www.gridpp.ac.uk/
|