Testbed Support for GridPP member institutes
> [mailto:[log in to unmask]] On Behalf Of Cornwall, LA (Linda)
said:
> Having said that, it is encouraging that when someone is
> trying to break RSA codes it got noticed by sites and the
> activity was stopped by many.
Only by accident because it was using a lot of resources. Someone who
wanted to abuse the system and tried to conceal it would probably not be
spotted - except perhaps when we get user-level accounting and the VO
manager wonders why that user used so much CPU time.
> Maybe should add to one of the policy documents (not sure
> which one) something on the lines that users must not use
> resources to crack certificates or for any other research
> into circumventing security unless this is specifically
> allowed by the VO operations Policy.
We used to have something like that in the old AUP, now we have a more
general statement that users have to comply with the VO policy. The
basic problem is that users neither read AUPs nor care much about them
... Possibly we should expel VO members every so often on general
principles, pour encourager les autres :)
Stephen
|