I'd say yes if I were an auditor. Encrypted PW requirements are usually something you find on your company's security policy, an ESM is a necessity on VM.
Marcy "This message may contain confidential and/or privileged information. If you are not the addressee or authorized to receive this for the addressee, you must not use, copy, disclose, or take any action based on this message or any information herein. If you have received this message in error, please advise the sender immediately by reply e-mail and delete this message. Thank you for your cooperation." -----Original Message----- From: The IBM z/VM Operating System [mailto:ib...@listserv.uark.edu] On Behalf Of RPN01 Sent: Tuesday, May 12, 2009 1:53 PM To: IBMVM@LISTSERV.UARK.EDU Subject: Re: [IBMVM] Oops and finding passwords on a system... Yes, I discovered this shortly after asking. I was able to do this from OPERATOR, and then use DEFINE MDISK to get access to the disk and see the USER BACKUP file to get the passwords I needed. The evil question that comes to mind now is, could an auditor site you because the operators effectively have access to all the passwords on the system via roughly four commands? Is this considered a security hole (though one that proved very useful today...) -- Robert Nix -- Mayo Clinic (shortened signature) On 5/12/09 2:55 PM, "Marcy Cortes" <marcy.d.cor...@wellsfargo.com> wrote: > Oops. > Make that > > Q MDISK USER DIRMAINT 1DB LOC > > > Marcy > > "This message may contain confidential and/or privileged information. If you > are not the addressee or authorized to receive this for the addressee, you > must not use, copy, disclose, or take any action based on this message or any > information herein. If you have received this message in error, please advise > the sender immediately by reply e-mail and delete this message. Thank you for > your cooperation." > > > -----Original Message----- > From: The IBM z/VM Operating System [mailto:ib...@listserv.uark.edu] On Behalf > Of Marcy Cortes > Sent: Tuesday, May 12, 2009 12:54 PM > To: IBMVM@LISTSERV.UARK.EDU > Subject: Re: [IBMVM] Oops and finding passwords on a system... > > If he is logged on, > > Q MDISK USER DIRMAINT LOC > > > > > Marcy