Hi,
I have a situation where theÂCONDOR_HOST is not a "trusted" machine concerning the files beingÂtransferred. Documentation suggest that it is possible to have the data encrypted between machines so I was wondering:
1 - What is the easiest way to have the execute and submit machines to share a encryption key without needing to disclose the key to the condor_host?
2 - I guess that if the execute and the submit machines are on the same network they will connect directly to exchange the files, correct? If so what happens when the submit and execute machine are behind a nat? Does condor execute some kind of hole punching to connect the machines directly?
Regards,
Tiago
![[Computer Systems Lab]](https://www-auth.cs.wisc.edu/pics/csl_logo.gif){kind=logo}