[Beowulf] 2 Security bugs fixed in Grid Engine
raysonlogin at gmail.com
Thu Apr 19 10:22:05 PDT 2012
Updated for GE2011.11:
Note that with this patch, users won't be able to pass dangerous env.
vars into the environment of epilog or prolog (and SGE's rshd, sshd,
etc) via qsub -v or qsub -V . However, the user job environment is not
affected. Also, any of those "dangerous" env. vars can be inherited
from the execution daemon's original start environment (so if
LD_LIBRARY_PATH is really needed, set it in the execution daemon's
Compare to other implementations, we think our fix is not intrusive at
all. We have never seen any sites running epilog or prolog that needs
users' LD_LIBRARY_PATH to function.
Open Grid Scheduler / Grid Engine
Scalable Grid Engine Support Program
On Thu, Apr 19, 2012 at 10:26 AM, Rayson Ho <raysonlogin at gmail.com> wrote:
> Right, the GE2011.11p1.patch diff is against GE2011.11. GE2011.11p1
> (ie. trunk) is compatible with GE2011.11, and GE2011.11 is also
> compatible with SGE 6.2u5.
> I can quickly create a diff for GE2011.11 during lunch time today -
> will let you know when it is done.
> Open Grid Scheduler / Grid Engine
> Scalable Grid Engine Support Program
> On Thu, Apr 19, 2012 at 8:31 AM, Taras Shapovalov
> <taras.shapovalov at brightcomputing.com> wrote:
>> I am trying to apply GE2011.11p1.patch for GE2011.11 and it fails. It seems,
>> the developers of GE have created this patch for the trunk version of GE
>> (which is not the same as the stable version). Is it correct?
>> Best regards,
> Open Grid Scheduler - The Official Open Source Grid Engine
Open Grid Scheduler - The Official Open Source Grid Engine
More information about the Beowulf