[GE users] SGE authentication

Ron Chen ron_chen_123 at yahoo.com
Tue Apr 13 01:02:56 BST 2004


By default, SGE does not use privileged ports for the
job submission utility, mainly due to NFS issues with
setuid binaries.

If higher security is needed, you just need to pass
"-resport" to the install scripts when setting up the
cluster.

For details about "-resport" and other security
methods:
http://gridengine.sunsource.net/unbranded-source/browse/~checkout~/gridengine/source/security/security.html?rev=1.4&content-type=text/html

 -Ron

--- canon at nersc.gov wrote:
> 
> I had a quick question.  How does SGE know to trust
> a job submission?
> LSF uses privileged ports and suid binaries to
> provide some
> "authentication".  What does SGE do?  Could someone
> modify qsub
> and submit jobs as anyone?
> 
> --Shane
> 
>
------------------------------------------------------------------------
> Shane Canon                             voice:
> 510-486-6981
> PSDF Project Lead                       fax:  
> 510-486-7520
> National Energy Research Scientific
>   Computing Center                       
> 1 Cyclotron Road Mailstop 943-256
> Berkeley, CA 94720                     
> canon at nersc.gov
>
------------------------------------------------------------------------
> 
> 
> 
>
---------------------------------------------------------------------
> To unsubscribe, e-mail:
> users-unsubscribe at gridengine.sunsource.net
> For additional commands, e-mail:
> users-help at gridengine.sunsource.net
> 


__________________________________
Do you Yahoo!?
Yahoo! Tax Center - File online by April 15th
http://taxes.yahoo.com/filing.html

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe at gridengine.sunsource.net
For additional commands, e-mail: users-help at gridengine.sunsource.net




More information about the gridengine-users mailing list