Indeed, if can can logon to it one can do these things anyhow, only a bit less flexible. And, to complete the list: the authorized user should also be able to work with the spool files of the. We had to code some VMOPER commands to make this possible.
2007/8/24, Alan Altmark <[EMAIL PROTECTED]>: > > On Friday, 08/24/2007 at 11:54 EDT, "Schuh, Richard" <[EMAIL PROTECTED]> > wrote: > > In that case, FORCE and XAUTOLOG should be in a class that does not > include > > SHUTDOWN. After all, why should we trust TCPIP any more than we do other > users? > > Who knows what information it is shipping to Chuckie unbeknownst to us? > > C says: "no no no. it's fine. really. trust me. (heh heh)" > > There are some who believe that the authority to LOGON BY to a user should > implicitly allow: > - XAUTOLOG > - SET SECUSER or OBSERVER > - SEND (a la class C) > - FORCE > - SIGNAL SHUTDOWN > > Thoughts? > -- Kris Buelens, IBM Belgium, VM customer support