It is an assumption that nobody else will use multi user pilots schemes
and we have no way to tell if they do it.
cheers
alessandra
On 07/04/2011 11:07, Stephen Burke wrote:
> Alessandra Forti [mailto:[log in to unmask]] said:
>> 1) A security measure that relies on the users to use it and
>> deal with it is not a security measure.
>> 2) There are only 3 customers with a well defined framework
>> who should use this stuff is just an assumption
> These aren't assumptions, they're requirements. Sites have to explicitly whitelist any user to allow them to use glexec, and you should only do that for VO pilot users running framework jobs which have undergone a security audit (which the LHC VO frameworks have). You might just as well say that the whole concept of root privilege is flawed because it relies on sysadmins to use it correctly!
>
>> 3) One of the experiments has already gone another way
>> (cherry on the cake)
> Alice have done things differently since before the start of EDG. In their case it seems that their user jobs don't need a proxy at all, so the problem glexec is solving doesn't exist for them.
>
> Stephen
|