0 Conferences false [["minutes", "Minutes"], ["notes", "Notes"], ["paper", "Paper"], ["poster", "Poster"], ["slides", "Slides"], ["summary", "Summary"]] University of Oxford (GB) alan.barr@cern.ch 19868 These are the Web pages providing information for the upcoming Computing in High Energy Physics (CHEP) conference in September 2004. CHEP conferences provide an international forum to exchange information on computing experience and needs for the High Energy Physics community, and to review recent, ongoing and future activities. CHEP conferences are held every 18 months, the previous one being held in San Diego in March 2003. False Interlaken, Switzerland

2004-09-27T08:30:00 2004-10-01T18:00:00 2004-02-03T15:53:31 2012-08-22T15:40:41 Europe/Zurich 154 false [["minutes", "Minutes"], ["notes", "Notes"], ["paper", "Paper"], ["poster", "Poster"], ["slides", "Slides"], ["summary", "Summary"]] Track 4 - Distributed Computing Services 1 poster KARLSRUHE RESEARCH CENTER (FZK) hardt@iwr.fzk.de KARLSRUHE RESEARCH CENTER (FZK) hardt@iwr.fzk.de KARLSRUHE RESEARCH CENTER (FZK) garcia@iwr.fzk.de Aristotle University of Thessaloniki skanct@physics.auth.gr Slovak Academy of Sciences astalos.ui@savba.sk Interlaken, Switzerland

Coffee In the HEP environment, clusters are running jobs comming from other sites and usually also from a relatively unknown user community -- Virtual Organizations of geographically distributed people. In this context, security is crucial! Much more crucial than in the case of cluster accepting only batch jobs from local users of an institution. A security breach could, for instance, let the attackers get access to the grid-certificates i.e. steal identities of many users in the Grid. Since the overall security of an insfrastructure is only as strong as the weakest link it is very important to make it certain that layers on top of which we build our higher lever Grid services are solid. Therefore, in parallel to the normal ways of dealing with security in the server code, a hardening of the Linux Kernel itself should be seriously considered. In this work we report on our experience with some of those hardened kernels in a Grid cluster running EDG/LCG middleware. Although some of the solutions provide the highest level of security in these kernels, they can also restrict the access that applications need to have to the system. Therefore it is particularly important to know beforehand which features can be enabled in the kernel, and which ones will lead to funtionally non-working nodes. 2013-05-25 2013-05-26