Reuti <[email protected]> writes: > Am 17.04.2012 um 23:55 schrieb Ron Chen: > >> Just IMO, IFS & PATH should be set by the script itself. But then it is just >> my opinion _only_. > > I second this and use absolute paths everywhere to be sure. If you > know the next jobnumber you could prepare something in the upcoming > $TMPDIR beforehand otherwise or leave something there for the > epilog...
I'm not sure I understand the context there, but TMPDIR is one of the variables glibc regards as dangerous and is likely to be important in methods like PE starters. > As said: IMO run scripts only under the user's account himself or use > a "dummy" account (without SGE manager rights) for special > purposes. If it's really necessary to prepare something as root user, > I would prefer a suid binary where LD_PRELOAD is ignored already for > the same reason. That may well be necessary anyway, but a lot of us don't trust ourselves with setuid (and there are potential problems with it in the SGE code, which justifies some concern). Also an arbitrary OS may not DTRT for setuid programs and all sensitive variables -- definitely not if people are worried about scripting load paths and such. -- Community Grid Engine: http://arc.liv.ac.uk/SGE/ _______________________________________________ users mailing list [email protected] https://gridengine.org/mailman/listinfo/users
