Opened 8 years ago
Last modified 8 years ago
#1351 new defect
spooled jobs files shouldn't be world-readable
| Reported by: | dlove | Owned by: | |
|---|---|---|---|
| Priority: | normal | Milestone: | 8.0.0e |
| Component: | sge | Version: | 8.0.0a |
| Severity: | minor | Keywords: | security |
| Cc: |
Description
One reason that GSS security isn't usable currently is the credentials being exposed in the "jobs" spool directory -- the job file is world readable. Other files in the spool should probably be treated similarly (at least job_scripts). It probably shouldn't be done more generally for execd/qmaster files as it's useful for users to be able to read the messages files and probably not a big security issue. This is probably orthogonal to #109.
Change History (4)
comment:1 Changed 8 years ago by dlove
- Milestone set to 8.0.0c
comment:2 Changed 8 years ago by dlove
- Milestone changed from 8.0.0c to 8.0.0d
comment:3 Changed 8 years ago by dlove
- Keywords security added
comment:4 Changed 8 years ago by admin
- Milestone changed from 8.0.0d to 8.0.0e
Note: See
TracTickets for help on using
tickets.
Punting for 8.0.0c, I'm not sure whether both the admin user and the job's
user need to be able to read the files. It may be better to encrypt the fields somehow.