Opened 8 years ago

Last modified 7 years ago

#1351 new defect

spooled jobs files shouldn't be world-readable

Reported by: dlove Owned by:
Priority: normal Milestone: 8.0.0e
Component: sge Version: 8.0.0a
Severity: minor Keywords: security
Cc:

Description

One reason that GSS security isn't usable currently is the credentials
being exposed in the "jobs" spool directory -- the job file is world
readable.  Other files in the spool should probably be treated similarly
(at least job_scripts).  It probably shouldn't be done more generally
for execd/qmaster files as it's useful for users to be able to read the
messages files and probably not a big security issue.

This is probably orthogonal to #109.

Change History (4)

comment:1 Changed 8 years ago by dlove

  • Milestone set to 8.0.0c

comment:2 Changed 8 years ago by dlove

  • Milestone changed from 8.0.0c to 8.0.0d

Punting for 8.0.0c, I'm not sure whether both the admin user and the job's
user need to be able to read the files. It may be better to encrypt the fields somehow.

comment:3 Changed 8 years ago by dlove

  • Keywords security added

comment:4 Changed 7 years ago by admin

  • Milestone changed from 8.0.0d to 8.0.0e
Note: See TracTickets for help on using tickets.