gLite Security Utilities
This release contains the gLite Security Utilities module v. 1.0.6. The following sections provide additional information about the release content, the module dependencies, the know bugs and issues and a list of bugs closed since the previous release. For information about installing and using the gLite Security Utilities please refer to the gLite Installation and User Guides.
As of this release of the gLite Security Utilities module the standard edg-mkgridmap RPM is used to deploy the mkgridmap script. The default value of the mkgridmap.script parameter has been changed accordingly. In addition, the grid-mapfile is now completely recreated every time the mkgridmap file is run. Previously, any manually added entries were preserved.
The output of the fetch-crl script is now redirected to a log file in /var/log/glite/glite-fetch-crl-cron.log; the errors are not e-mailed anymore to root or the configured mailto address
A new parameter (fetch-crl.cron.random.delay) has been added to activate the addition of a random delay to the fetch-crl cron to help prevent peak loads when connecting to CAs web servers.
The following new parameters have been added to the glite-security-utils.cfg.xml file:
|
Parameter name |
Default value |
Description |
|
fetch-crl.cron.random.delay |
true |
This property can be set to true to introduce a delay between 1 and 30 minutes (modulo 60) to the minutes part of the value of fetch-crl.cron.tab. The delay is randomly generated everytime the configuration script is run and then added to the cron tab. This delay helps preventing peak loads on the CA web servers in case too many nodes use the same schedule |
The following parameters have been changed in the glite-security-utils.cfg.xml file:
|
Parameter name |
Old value |
New value |
Description |
|
mkgridmap.script |
$GLITE_LOCATION/sbin/glite-mkgridmap |
/opt/edg/sbin/edg-mkgridmap |
The full path of the mkgridmap script |
The gLite Security Utilities module does not require any sub-modules.
The gLite Security Utilities v. 1.0.6 is composed of the following gLite components:
|
Component name |
|
Version |
File |
|
glite-config |
gLite configuration scripts |
1.4.5 |
|
|
org.glite.security-utils.config |
gLite Security Utilities configuration files |
1.0.6 |
The gLite Security Utilities v. 1.0.6 has the following external dependencies (the dependencies are distributed with the installer script):
|
Component name |
Version |
RPM file name |
|
CA Certificates |
Automatic |
../../../../../../../glite-web/egee/packages/externals/bin/rhel30/RPMS/ca_*-xxx-1.noarch.rpm |
|
fetch-crl |
2.0 |
../../../../../../../glite-web/egee/packages/externals/bin/rhel30/RPMS/fetch-crl-2.0-1.noarch.rpm |
|
perl-IO-Socket-SSL |
0.94 |
|
|
perl-Net-LDAP |
0.2701 |
|
|
perl-Net-SSLeay |
1.23 |
|
|
perl-Crypt-SSLeay |
0.51 |
|
|
perl-Term-ReadKey |
2.20 |
|
|
perl-Convert-ASN1 |
0.18 |
|
|
mkgridmap script |
2.5.1 |
This release has the following known bugs and issues. Bug numbers refer to the gLite Bug Tracking system database hosted on the CERN Savannah system at https://savannah.cern.ch/bugs/?group=jra1mdw .
This release contains the following known bugs:
|
Bug number |
Description |
|
|
Security Utilities installation script: Perl RPMs failed dependencies |
|
|
|
glite-security-utils_installer.sh fails when there are newer rpms already installed |
|
The following bugs have been fixed in this or previous releases, but they have not been officially tested yet:
|
Bug number |
Description |
|
|
|
||
|
|
||
|
|
||
|
CRL download cron default configuraiton in glite-security-utils.cfg.xml runs at fixed times |
|
|
|
|
This release fixes the following bugs and issues. Bug numbers refer to the gLite Bug Tracking system database hosted on the CERN Savannah system at https://savannah.cern.ch/bugs/?group=jra1mdw