Comment out host-based security in default config file.
We really want 9.0 to be secure by default, and host-based security isn’t.
Comment out the use security : host_based line in the default condor_config.
Change that metaknob to include Jaime’s “do the old, wrong way” knob (w.r.t. ALLOW_DAEMON and ALLOW_WRITE.)
Write an extensive comment about how that meta-knob was the default in the 8.8 series (and earlier), but we’re doing secure-by-default now, and that if you really want to carry on with an insecure pool, add that line to a file in /etc/condor/config.d.
These changes look good.
This failed in BaTLab. Not sure how my previous personal-run testing didn’t notice this, but there will be additional patches until the failure is resolved. I’ll post another comment when that happens.