On Fri, Nov 25, 2005 at 11:52:36AM +0000, Steve Fisher wrote:
> On Fri, Nov 25, 2005 at 11:01:05AM +0000, Kostas Georgiou wrote:
> > On Fri, Nov 25, 2005 at 12:57:22AM -0000, Fisher, SM (Steve) wrote:
> >
> > > Unfortunately many sites installed LCG2_6_0 without a secure connection. Only when all sites expose a secure connection can the sites be configured to make calls to a secure connection. Finally once all sites are using the secure connection, the insecure connections can be closed down. I hope that with the forthcoming LCG release 2_7_0 all sites *will* install securely and we can finally make the first faltering step.
> > >
> > > Steve
> >
> > So we are stuck with an insecure version until *everyone* upgrades?
> > If I want to secure R-GMA my only option is to effectively disable it
> > as far as I can see :(
>
> Yes
>
> >
> > Kostas
>
> It is an LCG requirement that we evolve smoothly. I had hoped that the
> first step would have been taken with LCG2_6_0 but it did not happen.
So smooth evolution takes priority over security problems?
Kostas
|