Mailing List Archives
Public Access
|
|
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Condor-users] [Condor-devel] information regarding ticket 1264
- Date: Tue, 07 Sep 2010 07:39:56 -0500
- From: "Timothy St. Clair" <tstclair@xxxxxxxxxx>
- Subject: Re: [Condor-users] [Condor-devel] information regarding ticket 1264
On Mon, 2010-09-06 at 16:08 +0200, Alexandre Fayolle wrote:
> On Thursday 08 July 2010 15:35:24 Timothy St. Clair wrote:
> > >
> > >
> > > 2. Does the addition of "PASSWORD" to
> > > CREDD.SEC_DEFAULT_AUTHENTICATION_METHODS have other implications with
> > > regard to the "storing credentials" part of CREDD*
> > >
> > >
> > >
> > > 3. if there is an agreement that this is the way to go to allow a clean
> > > shutdown of the service, I suggest fixing the condor_config.local.credd
> > > example file mentionned in the documentation, since the change is in
> > > the "CREDD expert settings" sections with various warning about changes
> > > only to be made by über condor wizards, which is quite intimidating for
> > > the newcommer.
> >
> > I will have to review the 2 & 3 and get back to you.
>
> Hi Timothy,
>
> I coming back on this to see if you had a chance to review this, esp. point 2?
> I would like to deploy this on my cluster, but I'd like to be sure this is not
> opening a security hole.
The passwords are encrypted when using store_cred so this should not be
an issue.
>
> Thanks a lot for your help,
>