[myproxy-announce] MyProxy 4.4 released

Jim Basney jbasney at ncsa.uiuc.edu
Fri Dec 12 14:15:00 CST 2008

MyProxy 4.4 is now available from the MyProxy web site

SHA1 checksum:
c2c11fee970eedaea307b9a837e283b14e8b3bc5  myproxy-4.4.tar.gz
MD5 checksum:
32854386d910851eb308ccc106bc15a7  myproxy-4.4.tar.gz

Changes in this release:
- allow $MYPROXY_SERVER and -s command-line options to be a
  comma-separated list of hostnames to try to connect to
- in myproxy-server, fail on startup or reconfig with an "unsafe
  policy" error if a policy of trusted_retrievers "*" is specified
  without also specifying a restrictive default_trusted_retrievers
  policy, to avoid an unsafe policy that could release credentials
  to any client without additional authentication.
- in myproxy-server, log info for the received client request before
  the authorization check, so we have the request info for
  troubleshooting purposes even if the request is denied.
- in myproxy-server, fail on startup if PAM, SASL, or OCSP is
  configured in myproxy-server.config but the needed libraries are
  not linked in
- fix problem with OpenSSL engine (for HSM support) being shutdown
  on child process failures
- fix bug when issuing certificates with subject containing "//"
- add support for multiple --voms options to myproxy-init/logon
- added myproxy-info --credname option
- for myproxy-logon -T, bootstrap the trusted certificates directory
  atomically (http://bugzilla.globus.org/bugzilla/show_bug.cgi?id=6432)
- for myproxy-logon --voms, request the correct proxy type from
- added example myproxy-revoke and myproxy-crl.cron scripts for
  revoking certificates issued by the MyProxy CA and generating CRLs
- added max_cred_lifetime option in myproxy-server.config to limit
  the lifetime of credentials stored in the repository

We appreciate your feedback on the MyProxy software.  Please submit bug
reports, feature requests, etc., to <http://bugzilla.globus.org/>.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 4000 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.globus.org/pipermail/myproxy-announce/attachments/20081212/cfe3f970/attachment.bin>

More information about the myproxy-announce mailing list