On Fri, 5 Feb 2010 10:35:28 -0500, Bob Woodside wrote: >> >> Or define CHOWN.UNRESTRICTED in the UNIXPRIV class. >> >> <quote> >> To allow all z/OS UNIX users to transfer ownership of files they own >> to any UID or GID on the system, create a discrete profile in the >> UNIXPRIV class called CHOWN.UNRESTRICTED. If this profile is defined >> on your system, all z/OS UNIX users can issue the chown command to >> transfer ownership of files that they own. >> </quote> > > But please don't do it! :-) > > (Same goes for the Solaris boot parm that has the same effect.) > Even worse, while z/OS enforces the restriction on the server (which feels appropriate), Solaris gives the choice of enforcement on either the server or client. When OpenEdition appeared on the scene, I found that archives I extracted to filesystems served by Solaris immediately became inaccessible to me. It seems that the Solaris admins had long relied on client-side enforcement (not available on MVS) and left the servers unrestricted. When I reported this as a problem, they declined to change it, fearing it would break some legacy operations.
-- gil ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
