Alessandra Forti [mailto:[log in to unmask]] said:
> it makes glexec useless from the security point of view if
> you have to
> agree with the users that they use it, actually give them
> access to it,
> don't you see how circular is the argument?
No. Pilot job frameworks are intrinsically privileged, so any such system must be trusworthy and the code must be audited - even if there are no vulnerabilities in glexec a compromise of a pilot framework would be a major incident that would probably shut down the whole grid and cause a great deal of disruption. (Not to mention potentially invalidating any physics results!)
Stephen
|