Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
More secure chown fallback with run-as-real user jobs.
Previously it would fallback to making the working directory world writable. @dctrud pointed out this is not ideal from a security perspective and should not be the default - http://dev.list.galaxyproject.org/DRMAA-chmod-to-world-writable-if-to-user-chown-fails-should-not-be-default-td4666869.html - I agree. The former behavior can be restored by enabling the new external_chown_insecure_fallback option - but this commit does disable that option by default and this may be a breaking change under certain circumstances. I'll document this option after #94 is merged.
- Loading branch information