Opened 10 years ago

Last modified 10 years ago

#1351 new defect

spooled jobs files shouldn't be world-readable

Reported by: dlove Owned by:
Priority: normal Milestone: 8.0.0e
Component: sge Version: 8.0.0a
Severity: minor Keywords: security


One reason that GSS security isn't usable currently is the credentials
being exposed in the "jobs" spool directory -- the job file is world
readable.  Other files in the spool should probably be treated similarly
(at least job_scripts).  It probably shouldn't be done more generally
for execd/qmaster files as it's useful for users to be able to read the
messages files and probably not a big security issue.

This is probably orthogonal to #109.

Change History (4)

comment:1 Changed 10 years ago by dlove

  • Milestone set to 8.0.0c

comment:2 Changed 10 years ago by dlove

  • Milestone changed from 8.0.0c to 8.0.0d

Punting for 8.0.0c, I'm not sure whether both the admin user and the job's
user need to be able to read the files. It may be better to encrypt the fields somehow.

comment:3 Changed 10 years ago by dlove

  • Keywords security added

comment:4 Changed 10 years ago by admin

  • Milestone changed from 8.0.0d to 8.0.0e
Note: See TracTickets for help on using tickets.