Mailing List ArchivesPublic Access |
![[Computer Systems Lab]](https://www-auth.cs.wisc.edu/pics/csl_logo.gif){kind=logo}
|
Mailing List ArchivesPublic Access |
|
so, since also /bin is under cvmfs here, and hence under parrot, the system needs to start as root in order to build a working system (see uCERNVM documentation). once I am root, parrot forbids setuid execs to run, so I can only stay root.
the cms sw has no problem with that, it runs happily. it seems instead htcondor is not happy. please note you are root in a parrot + cvmfs ,ÂÂÂÂÂ so not really a powerful root. you can hardly screw up the system in the container, let alone the host one.
tom
On 10/16/2015 07:58 AM, Tommaso Boccali wrote:
Perhaps I'm missing something, but can you start Condor as a non-root user?
Ciao,I am experimenting an opportunistic workflow for CMS, in which condor starts in a docker container using uCERNVM + Parrot.basically, the image contains just the kernel, and also /usr, /bin etc are provided via CVMFS via Parrot.One of the limitations of this environment is thas setuid commands do not work (trapped by Parrot), so eventually you are root and cannot become any other user.
-greg
_______________________________________________
HTCondor-users mailing list
To unsubscribe, send a message to htcondor-users-request@xxxxxxxxxxx with a
subject: Unsubscribe
You can also unsubscribe by visiting
https://lists.cs.wisc.edu/mailman/listinfo/htcondor-users
The archives can be found at:
https://lists.cs.wisc.edu/archive/htcondor-users/