Mailing List Archives Authenticated access	UW Madison Computer Sciences Department Computer Systems Lab

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Condor-users] GSI auth in Windows

Date: Wed, 22 Aug 2012 16:05:08 -0500
From: Zachary Miller <zmiller@xxxxxxxxxxx>
Subject: Re: [Condor-users] GSI auth in Windows

> My question arises more as a result of not quite knowing the ins and outs of how Condor works at a low level.  What worried me is that someone
> could write a script to send an arbitrary packet to a Condor port which would be unauthenticated.  I assume, however, that without a daemon handshake (authenticated +/- encrypted, etc) that this would be impossible.

correct.  your configuration will keep people without your SSL cert from
sending packets that condor will honor, regardless of your ALLOW_WRITE
setting.  this is because you have the SEC_DAEMON_AUTHENTICATION now set
to REQUIRED.


cheers,
-zach

Follow-Ups:
- Re: [Condor-users] GSI auth in Windows
  - From: Jewell, Chris

References:
- [Condor-users] GSI auth in Windows
  - From: Jewell, Chris
- Re: [Condor-users] GSI auth in Windows
  - From: Zachary Miller
- Re: [Condor-users] GSI auth in Windows
  - From: Jewell, Chris
- Re: [Condor-users] GSI auth in Windows
  - From: Zachary Miller
- Re: [Condor-users] GSI auth in Windows
  - From: Jewell, Chris
- Re: [Condor-users] GSI auth in Windows
  - From: Rich Pieri
- Re: [Condor-users] GSI auth in Windows
  - From: Jewell, Chris

Prev by Date: Re: [Condor-users] GSI auth in Windows
Next by Date: Re: [Condor-users] GSI auth in Windows
Previous by thread: Re: [Condor-users] GSI auth in Windows
Next by thread: Re: [Condor-users] GSI auth in Windows
Index(es):
- Date
- Thread

Mailing List Archives

Authenticated access

Re: [Condor-users] GSI auth in Windows