[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Condor-users] Windows XP service pack 2

For those of you attempting to work around the SP2 firewall:

I don't believe this is documented, but when a trusted application is added as an exception to the windows firewall, all child processes created by the trusted application are ALSO exceptions. So in Condor, this means that adding the full path to condor_master.exe is sufficient for circumventing the firewall.

What this also means is that user jobs will be excepted from the firewall as well. It appears there is no way to avoid this, though Microsoft has yet to confirm this for us (though they were quick to recommend ISA Server if finer-grained control is desired).

In the soon-to-be-released 6.6.7 version of Condor for Windows, the master will check to see if it is excepted, and if not, will automatically add itself to the list of trusted applications. This behavior will be enabled by default (and will have no effect on machines not running XP SP2 or running XP SP2 with the firewall disabled). To disable this feature, you'll have to add


to your config file.