CORRECTION: HTCondor delegates proxies as 512-bit proxies by default

WLCG glexec tests have uncovered an issue with the effective default size of HTCondor delegated proxies. Sites should be aware that if they allow HTCondor to delegate proxies, the delegated proxies will be 512-bit proxies, even if the original proxy was 1024-bits or greater.

The issue is an incompatibility with 512-bit proxies and OpenSSL versions >= 1.0.1. Glexec calls and SSL communication will fail.

As stated in the OSG release documentation, sites should disable delegation entirely by inserting the following line into their HTCondor configuration:

DELEGATE_JOB_GSI_CREDENTIALS = False

More information can be found at https://twiki.grid.iu.edu/bin/view/Documentation/Release3/InstallComputeElement#5_1_If_you_are_using_Condor