Re: Bad Auditor Requests (was Module description)

2005-11-03 Thread Binyamin Dissen 
On Thu, 3 Nov 2005 00:00:00 GMT Ted MacNEIL <[EMAIL PROTECTED]>
wrote:

:>>Um...sort of.  There is a directory structure, and it is maintained by hand 
(by editing the source directory -- a flat file)
:>...

:>Isn't there a CMS/CP command called DIRMaint?

I remember it as a service machine which would handle requests. It would also
keep track of free space so that one could more easily create a mini-disk.

The basic CMS command (or was it an EXEC?) was DIRECT.

--
Binyamin Dissen <[EMAIL PROTECTED]>
http://www.dissensoftware.com

Director, Dissen Software, Bar & Grill - Israel


Should you use the mailblocks package and expect a response from me,
you should preauthorize the dissensoftware.com domain.

I very rarely bother responding to challenge/response systems,
especially those from irresponsible companies.

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html

Re: Bad Auditor Requests (was Module description)

2005-11-03 Thread Shmuel Metz (Seymour J.) 
In <[EMAIL PROTECTED]>, on 11/02/2005
   at 08:59 AM, Paul Gilmartin <[EMAIL PROTECTED]> said:

>What's in a name?

In an operating system? Everything.

>Doesn't VM/SP have (or was it earlier releases?) a file with similar
>function? 

Sure, but the auditor didn't ask for it and it might not have been
legal to give it to him had he asked.
 
-- 
 Shmuel (Seymour J.) Metz, SysProg and JOAT
 ISO position; see  
We don't care. We don't have to care, we're Congress.
(S877: The Shut up and Eat Your spam act of 2003)

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html

Re: Bad Auditor Requests (was Module description)

2005-11-03 Thread Ted MacNEIL 
>Um...sort of.  There is a directory structure, and it is maintained by hand 
>(by editing the source directory -- a flat file)
...

Isn't there a CMS/CP command called DIRMaint?

I seem to recall using that to set up my static connections to other CMS 
mini-disks.


>Invoking DIRMAINT is not called EDITING
...

Our SYSPROG called it EDITING when you invoked the DIRM command
-teD

In God we Trust!
All others bring data!
 -- W. Edwards Deming

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html

Re: Bad Auditor Requests (was Module description)

2005-11-03 Thread Phil Smith III 
Ted MacNEIL <[EMAIL PROTECTED]> wrote:
>There is a directory structure and it is maintained by a 
>utility/command/service machine called DIRMAINT.
>Invoking DIRMAINT is called EDITING.

Um...sort of.  There is a directory structure, and it is maintained by hand (by 
editing the source directory -- a flat file), by a service machine called 
DIRMAINT (IBM PP), or by any of several other ISV products.  Invoking DIRMAINT 
is not called EDITING, at least not of any of the several hundred VM shops I've 
been at.  Editing is called EDITING.

In a site with no security package, the source directory does have plaintext 
passwords in it.  That's why you keep it on a secure minidisk.

...phsiii

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html

Re: Bad Auditor Requests (was Module description)

2005-11-02 Thread Ted MacNEIL 
>Doesn't VM/SP have (or was it earlier releases?) a file with similar
function?  I've heard my sysprog speak of editing "The Directory"
to add a user.
...

There is a directory structure and it is maintained by a 
utility/command/service machine called DIRMAINT.
Invoking DIRMAINT is called EDITING.

Some, but not all, functions are superceded by your security software.
But, all your mini-disk static allocations, accounting info, initial virtual, 
start up programme (CP, CMS, MVS, etc.) are all defined there.

Sort of like the old UADS, but with more info.

If you don't have a security package, your password is also stored there.

-teD

In God we Trust!
All others bring data!
 -- W. Edwards Deming

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html

Re: Bad Auditor Requests (was Module description)

2005-11-02 Thread Paul Gilmartin 
In a recent note, Thomas Kern said:

> Date: Tue, 1 Nov 2005 16:41:50 -0800
> 
> My favorite auditor request was when an auditor asked for a printout from my
> VM/SP system. I had to leave the meeting before my boss could finish laughing.
> 
> The auditor wanted /etc/passwd.
> 
What's in a name?

Doesn't VM/SP have (or was it earlier releases?) a file with similar
function?  I've heard my sysprog speak of editing "The Directory"
to add a user.

I'll grant the auditor was somewhat out of his element; he was
unlikely to know what a Class G user was.

-- gil
-- 
StorageTek
INFORMATION made POWERFUL

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html

Re: Bad Auditor Requests (was Module description)

2005-11-02 Thread Shmuel Metz (Seymour J.) 
In <[EMAIL PROTECTED]>, on
11/01/2005
   at 04:41 PM, Thomas Kern <[EMAIL PROTECTED]> said:

>My favorite auditor request was when an auditor asked for a printout
>from my VM/SP system. I had to leave the meeting before my boss could
>finish laughing. 

>The auditor wanted /etc/passwd. 

Well that might be a problem on a level of VM that doesn't[1] support
Unix, but on z/VM that would be an easy chuckle; just run "cat
/etc/passwd" and photograph his expression when he reads the output.
IAC, were you able to keep a straight face?

[1] AFAIK that includes VM/SP and HPO, but with luck he'd make the
same request for VM/ESA or z/VM.
 
-- 
 Shmuel (Seymour J.) Metz, SysProg and JOAT
 ISO position; see  
We don't care. We don't have to care, we're Congress.
(S877: The Shut up and Eat Your spam act of 2003)

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html

Re: Bad Auditor Requests (was Module description)

2005-11-01 Thread Thomas Kern 
My favorite auditor request was when an auditor asked for a printout from my
VM/SP system. I had to leave the meeting before my boss could finish laughing. 

The auditor wanted /etc/passwd. 

/Tom Kern

--- "McKown, John" <[EMAIL PROTECTED]> wrote:
> > Shouldn't any competent auditor who is asking about a 
> > vendor's programs know
> > that they have to ask the vendor, not the user?  Shouldn't your only
> > response have to be "Ask IBM"?
> > 
> > Oops.  Is "competent auditor" an oxymoron?
> > 
> Reminds me of an actual request from an auditor many years ago:
> 
> 
> List all possible exits in every piece of software installed on your MVS
> system. Futher detail everything that could be done by using those
> exits.
> 
> 





__ 
Yahoo! Mail - PC Magazine Editors' Choice 2005 
http://mail.yahoo.com

--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html