[Condor-users] Condor WS BirdBath security questions

[Nathan Harmston <nharmston@xxxxxxxxxxx>]

Hi,

In order to use the Condor WS (BirdBath), it must be configured that
Condor allows anonymous users to submit jobs. This of course to my
departments SysAdmin seems very insecure. The problem occurs during the
creation of a cluster for submission of a job and then when u submit a
job, you only need a username (which doesnt map to an allowed user of
the pool?), letsthrashtheharddrive.sh springs to mind. 

Is there anyway to work around this and force Condor to authenicate
users through the webservices interface ? 
Are there any plans to implement better security functionality in
BirdBath anytime soon? 
I ve seen a paper integrating GridSAM and Condor and was wondering if
anyone knew about the security model used in this? Is GridSAM submitting
via the Condor DRM anonymously or can this be setup differently?

Thanks 


Nathan


PS The paper btw is Condor BirdBath - Web Service Interfaces to Condor -
AHM 2005



This message has been checked for viruses but the contents of an attachment
may still contain software viruses, which could damage your computer system:
you are advised to perform your own checks. Email communications with the
University of Nottingham may be monitored as permitted by UK legislation.