Emergency maintenance to fix security vulnerability (CVE-2016-5195)

From ScientificComputing
Revision as of 14:45, 24 October 2016 by Byrdeo (talk | contribs) (Added note about user data)

Jump to: navigation, search

Due to a security vulnerability (CVE-2016-5195), we need to perform an emergency maintenance. The login nodes have been closed and the queues have been inactivated. The currently running jobs will continue to run.

Our system administrators are working to make Euler available again as soon as possible. Please check this page for updates.

We are sorry for the inconvenience.

Updates

As a precaution, all login nodes and compute nodes will be wiped clean and reinstalled. This is necessary to eliminate any malicious software that could have been installed while the system was compromised. This reinstallation affects only system files stored in the nodes' local file system (/bin, /etc, /sbin, /scratch, /tmp, /usr, etc.). User data (/cluster/home, /cluster/scratch, /cluster/work, /cluster/project) do not pose any security risk and will therefore not be touched in any way.