12764: crunch-run temporary directories have common parent

12764: crunch-run temporary directories have common parent

Some directories created by crunch-run need to be world
readable/writable.  Apply path-based security using parent directory
with mode 0700.  Enables crunch-run to bind into the container while
avoiding making the directory trivially accessible to anyone on the
host.

Arvados-DCO-1.1-Signed-off-by: Peter Amstutz <pamstutz@veritasgenetics.com>