On 07/04/2011 10:42, Stephen Burke wrote:
> Testbed Support for GridPP member institutes [mailto:[log in to unmask]] On Behalf Of Daniela Bauer said:
>> If you implement a feature/bug somebody is going to use it/exploit it/fall for it, whether on purpose or accidentally.
>> I can't believe "we are relying on the users to deal with this" still counts as an argument in this day and age.
> In the case of glexec, "users" means "VO framework developers", so it isn't so unreasonable to expect them to get it right. We basically only have three clients which will use glexec, i.e. the analysis pilot jobs for atlas, lhcb and cms (alice will do it differently it seems).
>
> Stephen
I know I said I'm tired of this discussion but.... in the previous 5
lines there are 3 points that summarize it all.
1) A security measure that relies on the users to use it and deal with
it is not a security measure.
2) There are only 3 customers with a well defined framework who should
use this stuff is just an assumption
3) One of the experiments has already gone another way (cherry on the cake)
cheers
alessandra
|