[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Condor-users] GSI auth in Windows

> My question arises more as a result of not quite knowing the ins and outs of how Condor works at a low level.  What worried me is that someone
> could write a script to send an arbitrary packet to a Condor port which would be unauthenticated.  I assume, however, that without a daemon handshake (authenticated +/- encrypted, etc) that this would be impossible.

correct.  your configuration will keep people without your SSL cert from
sending packets that condor will honor, regardless of your ALLOW_WRITE
setting.  this is because you have the SEC_DAEMON_AUTHENTICATION now set