[kepler-dev] [Bug 3072] Security issues with distributed execution
bugzilla-daemon at ecoinformatics.org
bugzilla-daemon at ecoinformatics.org
Thu May 20 21:20:59 PDT 2010
http://bugzilla.ecoinformatics.org/show_bug.cgi?id=3072
jianwu <jianwu at sdsc.edu> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |FIXED
--- Comment #4 from jianwu <jianwu at sdsc.edu> 2010-05-20 21:20:58 PDT ---
It is fixed at version 24539. When a slave is started using
startWithExecutionPolicy command, it will use master-slave.policy file to run
in a secure sandbox.
By default, it will not allow 'External Execution', 'Python', 'Matlab', 'R'
actors to be executed at the slave side, since there may be malicious codes
embedded in these actors.
By configuration this file, the allowance for the above actors can be
configured.
--
Configure bugmail: http://bugzilla.ecoinformatics.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
More information about the Kepler-dev
mailing list