SSH tunneling for unattended process.
We're looking at using an SSH tunnel (or reverse tunnel) to encrypt a connection where the application on the other end does not support TLS. The POC looks to be working. I am now pondering on the steps required to make setting up the tunnel an automated process. It seems to me that we'd want the z/OS user to be a "protected" user (NOPASSWORD/NOPHRASE/NOOIDCARD). Would this require that we use SSH host based authentication? I imagine that the user would require an OMVS segment. I wonder if it would need a shell or home directory. Any other thoughts? Thanks, Frank -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
SMF Interval
What SMF interval do most folks use? -- Phoenix Software International Edward E. Jaffe 831 Parkview Drive North El Segundo, CA 90245 https://www.phoenixsoftware.com/ This e-mail message, including any attachments, appended messages and the information contained therein, is for the sole use of the intended recipient(s). If you are not an intended recipient or have otherwise received this email message in error, any use, dissemination, distribution, review, storage or copying of this e-mail message and the information contained therein is strictly prohibited. If you are not an intended recipient, please contact the sender by reply e-mail and destroy all copies of this email message and do not otherwise utilize or retain this email message or any or all of the information contained therein. Although this email message and any attachments or appended messages are believed to be free of any virus or other defect that might affect any computer system into which it is received and opened, it is the responsibility of the recipient to ensure that it is virus free and no responsibility is accepted by the sender for any loss or damage arising in any way from its opening or use. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: ISPF setup macro
On Thu, 28 Dec 2023 02:01:54 +, Seymour J Metz wrote: >I'm trying to use LIBDEF as an alternative to freeing and reallocating the >standard ISPF concatenations. LIBDEF is commonly used to eliminate the need for reallocating standard ISPF DDs. There are situations where ISPxUSR is useful but I suspect most don't use it. I'm sure CBTTAPE.ORG has multiple examples of setting up the ISPF application environment. >Yes, typo for ISPxUSR. The allocation is before starting ISPF. The >documentation shows > those ddnames as being picked up automatically only for the DATASET keyword. If you are developing an application, then I suggest avoiding ISPxUSR unless your requirements need it. Using LIBDEF for products means the datasets are freed when not in use. >I'm aware of the contingent that advocates NOVALUE, but I don't agree with >that perspective. ISPF works as designed and everyone must follow these rules or request they be changed. >To clarify, my logon panel calls userid.AD.CLIST, which does allocations, >ALTLIB and TSOLIB before calling ISPF. A requirement for products that I've worked on is that everything is contained within the REXX and nothing needs to be modified in TSO other than making the REXX available to the users who need it. > I want to add, e.g., user panels, in a form that will persist across START > (ISPSTRT). Persistence is typically achieved through REXX using the appropriate LIBDEFs. You would still need a REXX with permanent DD's because you should have a different ISPF ZAPPLID for your application. -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: What is the PDS command?
Good to know, thank you. BTW, Tom said "I can't imagine working without it." Well, I've been working for ~25 years without it, so I can imagine that. Not only me - I did not work with anyone who was using that tool, as a consultant I visited several shops and met many mainframers. To be well understood: I do not criticise PDS86, absolutely. This is just another example of "YMMV" or just another point of view. And I want to learn about the tool and maybe start using it. :-) -- Radoslaw Skorupka Lodz, Poland W dniu 27.12.2023 o 17:22, Lionel B. Dyck pisze: This is a great, albeit a bit dated, overview of the PDS command - aka the Swiss Army Knife of Utilities. There have been many updates, including support for PDSE data sets, but this should give everyone a great overview. https://share.confex.com/share/115/webprogram/Handout/Session7417/zOS%20Basics%20Freeware%20-%20PDS%20The%20Swiss%20Army%20Knife%20of%20Utilities%20-%20Hands-On%20Lab.pdf Lionel B. Dyck <>< Github:https://github.com/lbdyck “Worry more about your character than your reputation. Character is what you are, reputation merely what others think you are.” - - - John Wooden -Original Message- From: IBM Mainframe Discussion List On Behalf Of Tom Brennan Sent: Wednesday, December 27, 2023 10:18 AM To:IBM-MAIN@LISTSERV.UA.EDU Subject: Re: What is the PDS command? Possibly the only file on the CBT that has its own web page, and it certainly deserves it. I can't imagine working without it. Thanks to John Kalinich and all those who came before. On 12/27/2023 2:05 AM, Mike Schwab wrote: https://www.cbttape.org/freepds.htm On Wed, Dec 27, 2023 at 3:58 AM Edward Gould < 04bcc43af339-dmarc-requ...@listserv.ua.edu> wrote: HI Roger, The PDS command as I remember it from 40 years ago did a lot more than ... -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
