[slurm-users] SLURM on Ubuntu 16.04

Patrick Goetz pgoetz at math.utexas.edu
Thu Apr 26 07:38:20 MDT 2018 

I don't think the problem Chris is referring to (a SQL injection attack) 
is going to apply to you because you're way too small to need to worry 
about Slurm accounting, but if it is a concern, install the distro 
packages; confirm that things are roughly working and then just take 
note of how things are set up.  You can use

    dpkg -L <package_name>

to see what files are installed where, and the initial install will tell 
you what package dependencies are being pulled in.  This will help you 
do a setup from the tarball.

Oh, and it is possible that the Ubuntu package will helpfully turn on 
the slurmdbd for you.  Find out what service it's running as 
(slurmdbd.service?) and mask it:

   systemctl stop slurmdbd
   systemctl mask slurmdbd

Disclaimer:  I don't currently use the Slurm accounting system and have 
no idea how it is set up, so the instructions above are likely entirely 
incorrect.

On 04/25/2018 07:11 PM, Eric F. Alemany wrote:
> Hi Chris,
> 
> Thank you for the update(s). It is what it is - right ?
> 
> _____________________________________________________________________________________________________
> 
> *
> *Eric F.  Alemany*
> *
> /System Administrator for Research/
> 
> Division of Radiation & Cancer  Biology
> Department of Radiation Oncology
> 
> Stanford University School of Medicine
> Stanford, California 94305
> 
> Tel:1-650-498-7969 <tel:1-650-498-7969>No Texting
> Fax:1-650-723-7382 <tel:1-650-723-7382>
> 
> 
> 
>> On Apr 25, 2018, at 5:03 PM, Christopher Samuel <chris at csamuel.org 
>> <mailto:chris at csamuel.org>> wrote:
>>
>> On 26/04/18 09:58, Christopher Samuel wrote:
>>
>>> Most importantly you will want to be sure that they have backported the
>>> patch to close CVE-2018-7033 (fixed in 17.11.5).
>>
>> Went and found their sources, there is no mention of this being fixed
>> in the proposed version, so it seems that bionic will ship Slurm with
>> this CVE unpatched. :-(
>>
>> According to: 
>> https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-7033.html
>>
>> it is listed as still "needs triage".
>>
>> Also unfixed in any Debian release too.
>>
>> https://security-tracker.debian.org/tracker/CVE-2018-7033
>>
>> cheers,
>> Chris
>> -- 
>> Chris Samuel  :  http://www.csamuel.org/  :  Melbourne, VIC
>>
>

More information about the slurm-users mailing list