problem with shared file system consistency

[[EMAIL PROTECTED]]

Hi listers,

I like to use the shared file system in cms instead of the standard 
minidisks. Now I have a problem with the file locking and I want to ask 
you if this might be only a configuration or a real software bug. I have 
first created a file on SFS and afterwards re-edited it to lock the 
file. When I try to xedit the file from another user the I get the 
correct message "DMSXFI1215E File Y Y T1 is locked UPDATE by another 
user". But while editing the file I can overwrite it with ftp without 
problems. I assume, this is a bug, but I want to make sure before 
opening a pmr.


--
kind regards
Franz Josef Pohlen

Re: Why are terminals showing as gateways?

[Alan Altmark]

On Friday, 03/07/2008 at 04:33 EST, Tony Thigpen <[EMAIL PROTECTED]> wrote:
> The shop I used to work at is having some TCP/IP problems with specific
> terminals. Today, they noticed that some terminals show up in the
> NETSTAT GATE query.

> VM TCP/IP Netstat Level 430
(ahem)

> 10.22.70.15 167.93.1.4  UGHC 1492  HOST   ETH1

If you look in the User's Guide, you'll find that the "C" is a result of 
an ICMP REDIRECT.  You should have IGNOREREDIRECT in AssortedParms.

Note that they're all pointing to 1.4, yet your defaultnet is 1.1. 
H... 

Alan Altmark
z/VM Development
IBM Endicott

Re: Limit of Telent sesssions for SLEs9

[Alan Altmark]

On Friday, 03/07/2008 at 01:35 EST, Suleiman Shahin 
<[EMAIL PROTECTED]> wrote:
> Greetings VMers!
> 
> We are Linux SLES9 to provide SSL telnet connections and the session 
limit is 
> 100.
> 
> What do I need to do to raise that limit? This is under zVM 5.3.

Before you do anything else, open a PMR with the Support Center.  You need 
some SSL Server code changes, too.

Alan Altmark
z/VM Development
IBM Endicott

Re: VMFTP Question/Problem

[Dale R. Smith]

Richard, Mark Wheeler posted a fix to VMFTP for this problem several year
s 
ago. Here is the link to the fix for VMFTP: 
http://listserv.uark.edu/scripts/wa.exe?A2=ind0007&L=vmesa-l&;
P=R7638

Or even better, go to Fran Hensler's download page and download VMFTPUPD 

VMARC which has this fix and several more included.  Fran's page is at:
http://zvm.sru.edu/~download

-- 
Dale R. Smith

"In spite of the cost of living, it's still popular."
- Laurence J. Peter

On Fri, 7 Mar 2008 13:33:03 -0800, Schuh, Richard <[EMAIL PROTECTED]> wrote
:

>We have a fairly straight-forward VMFTP macro that copies files from an
>SFS subdirectory into a MVS PDS, each filename becoming the member name.

>The return code from the put seems very odd. The return codes we observe

>from successful puts are as follows: 
>
>*  If the byte count is greater than or equal to 1000, then rc=250
>*  If the byte count is less than 1000, then rc=byte count.
> 
>Has anyone seen this before? Is everything working as it should? If so,
>are all real errors indicated by a return code >= 1000? If not behavin
g
>itself, is the problem in FTP or VMFTP?
>
>Regards, 
>Richard Schuh 
>
>
>

Re: Using UDP port 514 in z/VM TCPIP...

[David Boyes]

>> Also: If I violate this using Pipe and the UDP stage, why don¹t I get a
>> non-zero return code? 

> Because there are no guarantees in the IP protocol specifications that UDP 
> packets are ever delivered. UDP was designed to have those semantics, > and 
> thus if you use UDP, you're expected to handle missing packets yourself. If 
> you want guaranteed delivery, you're expected to use TCP. 

Direct quote from the RFC: "UDP does not guarantee reliability or ordering in 
the way that TCP does. Datagrams may arrive out of order, appear duplicated, or 
go missing without notice."

Re: Using UDP port 514 in z/VM TCPIP...

[David Boyes]

> My point exactly.

FTPSERVE is listed as an authorized virtual machine in the PORTS list in the 
TCPIP PROFILE. This permits it to listen on a low port. 

The FTP client does not use a low source port, so is not subject to the 
restriction. 

Re: Using UDP port 514 in z/VM TCPIP...

[David Boyes]

> My question now is what is the logic behind requiring a user to be in
> TCPIP¹s Obey list to allow it to use certain TCP/IP ports and protocols. It
> isn¹t everything, because things like FTP work, and I think you can play
> fairly fast and loose with higher numbered ports.

Port number < 1024 are considered "privileged" on Unix TCP/IP stacks, and imply 
that the process operating on them is somehow authorized. The virtual machine 
manipulating a low port has to be either in the OBEY list OR listed on the PORT 
statement in the TCPIP profile. 

> Also: If I violate this using Pipe and the UDP stage, why don¹t I get a
> non-zero return code? 

Because there are no guarantees in the IP protocol specifications that UDP 
packets are ever delivered. UDP was designed to have those semantics, and thus 
if you use UDP, you're expected to handle missing packets yourself. If you want 
guaranteed delivery, you're expected to use TCP. 

> Shouldn¹t there be an indication somewhere that the data wasn¹t
> sent? 

Nope. That's the risk one takes with UDP. This is why syslog-NG uses TCP. 

Re: Recycling Bus and Tag cables

[Fran Hensler]

We use bus and tag cables to hook our printer and tape drives to our
FLEX-ES box which is a PC, an IBM X-232.  So your statement could be
ture.
 
/Fran Hensler at Slippery Rock University of Pennsylvania USA for 44 years
 [EMAIL PROTECTED] +1.724.738.2153
"Yes, Virginia, there is a Slippery Rock"
 
On Fri, 7 Mar 2008 13:41:47 -0800 Schuh, Richard said:
>Take them to HP or Dell and tell them that they were used to hook
>devices to your PC :-)
>
>Regards,
>Richard Schuh
>
>
>
>> -Original Message-
>> From: The IBM z/VM Operating System
>> [mailto:[EMAIL PROTECTED] On Behalf Of Tom Duerbusch
>> Sent: Friday, March 07, 2008 1:25 PM
>> To: IBMVM@LISTSERV.UARK.EDU
>> Subject: Recycling Bus and Tag cables
>>
>> We are cutting up a bunch of old bus and tag cables that have
>> been under the machine room floor in order to pull them out a
>> little more easily.
>>
>> The blue ones don't seem to be made of copper.  Lots of
>> plastic and a little aluminum.
>>
>> When others have dumped their old bus and tag cables, what
>> did you do with them?
>> Did any recycling business care to take them?
>>
>> Is there any type of "green" initiative, that might dispose
>> of them in a "earth friendly" manor?
>>
>> Tom Duerbusch
>> THD Consulting
>> (making an attempt to keep them out of a land fill)
>>

Re: subdirectory create permissions for other users?

[Art Payne]

This is possible with SateSoftware's SAFESFS product. It saves a lot of 
time in setting up SFS authorizations, and is well worth the nominal cost.

>With SFS' native security this is impossible, only the filespace owner 
and an SFS admin can create subdirectories.  I guess an ESM may change 
that.
>In the past we had a PROP action routine that permitted users with write 
access to a dirid to create new subdirs (and the PROP user was SFS admin).

2008/3/7, Ian S. Worthington <[EMAIL PROTECTED]>:
Anyone know what permissions I need to set up to allow another user to 
create
a subdirectory in one of my directories?







Art Payne
ITS Enterprise Operations
Hewitt Associates  |  98-3S-1  |  100 Half Day Road  |  Lincolnshire, IL 
60069
Tel  (847)771-9211
[EMAIL PROTECTED]  |  www.hewitt.com



The information contained in this e-mail and any accompanying documents may 
contain information that is confidential or otherwise protected from 
disclosure. If you are not the intended recipient of this message, or if this 
message has been addressed to you in error, please immediately alert the sender 
by reply e-mail and then delete this message, including any attachments. Any 
dissemination, distribution or other use of the contents of this message by 
anyone other than the intended recipient is strictly prohibited. All messages 
sent to and from this e-mail address may be monitored as permitted by 
applicable law and regulations to ensure compliance with our internal policies 
and to protect our business. E-mails are not secure and cannot be guaranteed to 
be error free as they can be intercepted, amended, lost or destroyed, or 
contain viruses. You are deemed to have accepted these risks if you communicate 
with us by e-mail. 


<>

Re: Recycling Bus and Tag cables

[Schuh, Richard]

Take them to HP or Dell and tell them that they were used to hook
devices to your PC :-)

Regards, 
Richard Schuh 

 

> -Original Message-
> From: The IBM z/VM Operating System 
> [mailto:[EMAIL PROTECTED] On Behalf Of Tom Duerbusch
> Sent: Friday, March 07, 2008 1:25 PM
> To: IBMVM@LISTSERV.UARK.EDU
> Subject: Recycling Bus and Tag cables
> 
> We are cutting up a bunch of old bus and tag cables that have 
> been under the machine room floor in order to pull them out a 
> little more easily.
> 
> The blue ones don't seem to be made of copper.  Lots of 
> plastic and a little aluminum.  
> 
> When others have dumped their old bus and tag cables, what 
> did you do with them?
> Did any recycling business care to take them?
> 
> Is there any type of "green" initiative, that might dispose 
> of them in a "earth friendly" manor?
> 
> Tom Duerbusch
> THD Consulting
> (making an attempt to keep them out of a land fill)
> 

Re: Recycling Bus and Tag cables

[Dave Jones]

Since aluminum and copper have gone up in value in the last few years 
(due to increased demand by developing economies), I would think that 
any scrape metal dealer would jump at the chance to take these cables 
off of your hands


Tom Duerbusch wrote:

We are cutting up a bunch of old bus and tag cables that have been
under the machine room floor in order to pull them out a little more
easily.

The blue ones don't seem to be made of copper.  Lots of plastic and a
little aluminum.

When others have dumped their old bus and tag cables, what did you do
with them? Did any recycling business care to take them?

Is there any type of "green" initiative, that might dispose of them
in a "earth friendly" manor?

Tom Duerbusch THD Consulting (making an attempt to keep them out of a
land fill)


--
DJ

V/Soft
  z/VM and mainframe Linux expertise, training,
  consulting, and software development
www.vsoft-software.com

Why are terminals showing as gateways?

[Tony Thigpen]

The shop I used to work at is having some TCP/IP problems with specific 
terminals. Today, they noticed that some terminals show up in the 
NETSTAT GATE query.


netstat gate

VM TCP/IP Netstat Level 430



Known gateways:



NetAddress  FirstHopFlgs PktSz Subnet Mask   Subnet Value  Link

--   - ---    
--


Default 167.93.1.1  UGS  1492ETH1

10.22.70.15 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.35 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.39 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.40 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.42 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.46 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.50 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.58 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.62 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.75 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.77 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.78 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.79 167.93.1.4  UGHC 1492  HOSTETH1

10.22.70.80 167.93.1.4  UGHC 1492  HOSTETH1

10.22.120.63167.93.1.4  UGHC 1492  HOSTETH1

10.46.20.52 167.93.1.4  UGHC 1492  HOSTETH1

10.46.20.53 167.93.1.4  UGHC 1492  HOSTETH1

10.76.10.21 167.93.1.4  UGHC 1492  HOSTETH1

10.76.10.23 167.93.1.4  UGHC 1492  HOSTETH1

10.76.10.26 167.93.1.4  UGHC 1492  HOSTETH1

15.235.147.254  167.93.1.4  UGHC 1492  HOSTETH1

24.73.225.142   167.93.1.4  UGHC 1492  HOSTETH1

67.8.251.163167.93.1.4  UGHC 1492  HOSTETH1

67.8.255.102167.93.1.4  UGHC 1492  HOSTETH1

70.118.100.210  167.93.1.4  UGHC 1492  HOSTETH1

70.119.123.197  167.93.1.4  UGHC 1492  HOSTETH1

71.16.169.34167.93.1.4  UGHC 1492  HOSTETH1

72.146.113.252  167.93.1.4  UGHC 1492  HOSTETH1

72.146.114.125  167.93.1.4  UGHC 1492  HOSTETH1

72.189.177.225  167.93.1.4  UGHC 1492  HOSTETH1

72.242.39.74167.93.1.4  UGHC 1492  HOSTETH1

74.226.226.252  167.93.1.4  UGHC 1492  HOSTETH1

74.247.219.5167.93.1.4  UGHC 1492  HOSTETH1

97.101.9.217167.93.1.4  UGHC 1492  HOSTETH1

164.51.40.254   167.93.1.4  UGHC 1492  HOSTETH1

167.93.0.0  US   1492  0.0.255.0 0.0.1.0   ETH1

167.93.0.0  S1492  0.0.255.0 0.0.240.0
LINUX1V
169.139.176.84  167.93.1.4  UGHC 1492  HOSTETH1

170.216.4.1 167.93.1.4  UGHC 1492  HOSTETH1

192.168.189.74  167.93.1.4  UGHC 1492  HOSTETH1

192.168.189.76  167.93.1.4  UGHC 1492  HOSTETH1

192.168.189.79  167.93.1.4  UGHC 1492  HOSTETH1

192.168.190.20  167.93.1.4  UGHC 1492  HOSTETH1

199.242.100.25  167.93.1.4  UGHC 1492  HOSTETH1

209.168.150.74  167.93.1.4  UGHC 1492  HOSTETH1

219.241.105.4   167.93.1.4  UGHC 1492  HOSTETH1

Ready; T=0.02/0.03 15:09:02
netstat arp all

VM TCP/IP Netstat Level 430



Querying ARP cache for address *

Link ETH1: ETHERNET: 0C07AC00 IP: 167.93.1.1

Link ETH1: ETHERNET: 001A6D7C97F4 IP: 167.93.1.4

Link ETH1: ETHERNET: 00106F030EA0 IP: 167.93.1.65

Link ETH1: ETHERNET: 000F35220700 IP: 167.93.1.251

Link ETH1: ETHERNET: 000F35A5B780 IP: 167.93.1.253

Ready; T=0.01/0.01 15:18:49

Following is their CONFIG TCPIP file:
ACBPOOLSIZE 1200
ADDRESSTRANSLATIONPOOLSIZE 1500
CCBPOOLSIZE 150
DATABUFFERPOOLSIZE 400 8192
ENVELOPEPOOLSIZE 750
IPROUTEPOOLSIZE 600
LARGEENVELOPEPOOLSIZE 50 8192
RCBPOOLSIZE 256
SCBPOOLSIZE 256
SKCBPOOLSIZE 256
SMALLDATABUFFERPOOLSIZE 1800
TCBPOOLSIZE 1200
TINYDATABUFFERPOOLSIZE 60
UCBPOOLSIZE 100
; --
; Monitorrecords statement
;
; Use the MONITORRECORDS statement to select the monitor data records
; ==

VMFTP Question/Problem

[Schuh, Richard]

We have a fairly straight-forward VMFTP macro that copies files from an
SFS subdirectory into a MVS PDS, each filename becoming the member name.
The return code from the put seems very odd. The return codes we observe
from successful puts are as follows: 

*   If the byte count is greater than or equal to 1000, then rc=250
*   If the byte count is less than 1000, then rc=byte count.
 
Has anyone seen this before? Is everything working as it should? If so,
are all real errors indicated by a return code >= 1000? If not behaving
itself, is the problem in FTP or VMFTP?

Regards, 
Richard Schuh 

Recycling Bus and Tag cables

[Tom Duerbusch]

We are cutting up a bunch of old bus and tag cables that have been under the 
machine room floor in order to pull them out a little more easily.

The blue ones don't seem to be made of copper.  Lots of plastic and a little 
aluminum.  

When others have dumped their old bus and tag cables, what did you do with them?
Did any recycling business care to take them?

Is there any type of "green" initiative, that might dispose of them in a "earth 
friendly" manor?

Tom Duerbusch
THD Consulting
(making an attempt to keep them out of a land fill)

Re: Using UDP port 514 in z/VM TCPIP...

[RPN01]

My point exactly.


On 3/7/08 3:12 PM, "McKown, John" <[EMAIL PROTECTED]> wrote:

> An ftp client talks to an ftp server. The ftp server (an authorized
> user) listens on port 21 (control connection). The ftp client uses an
> ephemeral port (high port) to connect to the ftp server (on port 21).
> The ftp client does not use port 21 as the source port.
> 
> 
> --
> John McKown
.
>   
> -Original Message-
> From: The IBM z/VM Operating System [mailto:[EMAIL PROTECTED] On
> Behalf Of RPN01
> Sent: Friday, March 07, 2008 3:05 PM
> To: IBMVM@LISTSERV.UARK.EDU
> Subject: Re: Using UDP port 514 in z/VM TCPIP...
> 
> 
> But my port wasn't specified; I was trying to talk to port 514 on the
> destination. If what you're implying was true, then only OBEY users
> could use FTP, since it's port number is 21.

Re: Using UDP port 514 in z/VM TCPIP...

[McKown, John]

An ftp client talks to an ftp server. The ftp server (an authorized
user) listens on port 21 (control connection). The ftp client uses an
ephemeral port (high port) to connect to the ftp server (on port 21).
The ftp client does not use port 21 as the source port.


--
John McKown
Senior Systems Programmer
HealthMarkets
Keeping the Promise of Affordable Coverage
Administrative Services Group
Information Technology

This message (including any attachments) contains confidential
information intended for a specific individual and purpose, and its
content is protected by law.  If you are not the intended recipient, you
should delete this message and are hereby notified that any disclosure,
copying, or distribution of this transmission, or taking any action
based on it, is strictly prohibited.
  
-Original Message-
From: The IBM z/VM Operating System [mailto:[EMAIL PROTECTED] On
Behalf Of RPN01
Sent: Friday, March 07, 2008 3:05 PM
To: IBMVM@LISTSERV.UARK.EDU
Subject: Re: Using UDP port 514 in z/VM TCPIP...


But my port wasn't specified; I was trying to talk to port 514 on the
destination. If what you're implying was true, then only OBEY users
could use FTP, since it's port number is 21.

-- 
Robert P. Nix  Mayo Foundation.~. 
RO-OE-5-55 200 First Street SW/V\ 
507-284-0844   Rochester, MN 55905  /( )\   

Re: Using UDP port 514 in z/VM TCPIP...

[RPN01]

I'd buy that, except that it wasn't a protocol error; the problem was
entirely inside z/VM and TCPIP, in that a parameter was missing in the
PROFILE TCPIP, which isn't part of any of the standards. If I put my UDP
message out on the wire and it gets lost, I'll accept that. But if my own
interface refuses the message before ever sending it, I think it might be
useful to report that as an error, or at least log it in the TCPIP console
log. 

-- 
Robert P. Nix  Mayo Foundation.~.
RO-OE-5-55 200 First Street SW/V\
507-284-0844   Rochester, MN 55905   /( )\
-^^-^^
"In theory, theory and practice are the same, but
 in practice, theory and practice are different."




On 3/7/08 2:57 PM, "Stephen Frazier" <[EMAIL PROTECTED]> wrote:

> That is part of the UDP design. If an error occurs the data is silently
> discarded.
> 

Re: Using UDP port 514 in z/VM TCPIP...

[RPN01]

But my port wasn¹t specified; I was trying to talk to port 514 on the
destination. If what you¹re implying was true, then only OBEY users could
use FTP, since it¹s port number is 21.

-- 
Robert P. Nix  Mayo Foundation.~.
RO-OE-5-55 200 First Street SW/V\
507-284-0844   Rochester, MN 55905   /( )\
-^^-^^
"In theory, theory and practice are the same, but
 in practice, theory and practice are different."




On 3/7/08 2:57 PM, "McKown, John" <[EMAIL PROTECTED]> wrote:

> I am not an expert, but from what little I know, the "lower ports" (<1024)
> were considered to be "privileged". The convention was that if the originating
> port was <1024, then the remote end could __assume__ that the originator was
> "authorized" in some special way. And so, by convention, the "lower ports"
> were considered to be more "secure" than the "higher ports". Silly, but this
> dates from a long time ago.
>  
>  
> --
> John McKown

Re: Using UDP port 514 in z/VM TCPIP...

[Stephen Frazier]

That is part of the UDP design. If an error occurs the data is silently 
discarded.

RPN01 wrote:
I was going to ask what I was doing wrong... But I figured that out just 
a moment ago.


My question now is what is the logic behind requiring a user to be in 
TCPIP’s Obey list to allow it to use certain TCP/IP ports and protocols. 
It isn’t everything, because things like FTP work, and I think you can 
play fairly fast and loose with higher numbered ports. But trying to 
connect to port 514 on another virtual machine wasn’t allowed until I 
put the user in the Obey list in the PROFILE TCPIP file.


Also: If I violate this using Pipe and the UDP stage, why don’t I get a 
non-zero return code? The UDP stage quietly accepts records, and the 
pipe returns a zero return code, but no data is actually sent. There’s 
no errors in the TCPIP console log either; the data is just ignored and 
not sent anywhere. Shouldn’t there be an indication somewhere that the 
data wasn’t sent? Or (and I confess I haven’t tried to decode anything 
in the output string yet) is there something in the output of the UDP 
stage that would indicate that the message failed to send?


--
Robert P. Nix  Mayo Foundation.~.
RO-OE-5-55 200 First Street SW/V\ 
507-284-0844   Rochester, MN 55905  /( )\  
-^^-^^  
"In theory, theory and practice are the same, but

 in practice, theory and practice are different."

 


--
Stephen Frazier
Information Technology Unit
Oklahoma Department of Corrections
3400 Martin Luther King
Oklahoma City, Ok, 73111-4298
Tel.: (405) 425-2549
Fax: (405) 425-2554
Pager: (405) 690-1828
email:  stevef%doc.state.ok.us

Re: Using UDP port 514 in z/VM TCPIP...

[McKown, John]

I am not an expert, but from what little I know, the "lower ports"
(<1024) were considered to be "privileged". The convention was that if
the originating port was <1024, then the remote end could __assume__
that the originator was "authorized" in some special way. And so, by
convention, the "lower ports" were considered to be more "secure" than
the "higher ports". Silly, but this dates from a long time ago.
 
 

--
John McKown
Senior Systems Programmer
HealthMarkets
Keeping the Promise of Affordable Coverage
Administrative Services Group
Information Technology

This message (including any attachments) contains confidential
information intended for a specific individual and purpose, and its
content is protected by law.  If you are not the intended recipient, you
should delete this message and are hereby notified that any disclosure,
copying, or distribution of this transmission, or taking any action
based on it, is strictly prohibited.
  

-Original Message-
From: The IBM z/VM Operating System
[mailto:[EMAIL PROTECTED] On Behalf Of RPN01
Sent: Friday, March 07, 2008 2:44 PM
To: IBMVM@LISTSERV.UARK.EDU
Subject: Using UDP port 514 in z/VM TCPIP...


I was going to ask what I was doing wrong... But I figured that
out just a moment ago.

My question now is what is the logic behind requiring a user to
be in TCPIP's Obey list to allow it to use certain TCP/IP ports and
protocols. It isn't everything, because things like FTP work, and I
think you can play fairly fast and loose with higher numbered ports. But
trying to connect to port 514 on another virtual machine wasn't allowed
until I put the user in the Obey list in the PROFILE TCPIP file.

Also: If I violate this using Pipe and the UDP stage, why don't
I get a non-zero return code? The UDP stage quietly accepts records, and
the pipe returns a zero return code, but no data is actually sent.
There's no errors in the TCPIP console log either; the data is just
ignored and not sent anywhere. Shouldn't there be an indication
somewhere that the data wasn't sent? Or (and I confess I haven't tried
to decode anything in the output string yet) is there something in the
output of the UDP stage that would indicate that the message failed to
send?

-- 
Robert P. Nix  Mayo Foundation.~. 
RO-OE-5-55 200 First Street SW/V\ 
507-284-0844   Rochester, MN 55905  /( )\   
-^^-^^  
"In theory, theory and practice are the same, but
 in practice, theory and practice are different." 

  

Using UDP port 514 in z/VM TCPIP...

[RPN01]

I was going to ask what I was doing wrong... But I figured that out just a
moment ago.

My question now is what is the logic behind requiring a user to be in
TCPIP¹s Obey list to allow it to use certain TCP/IP ports and protocols. It
isn¹t everything, because things like FTP work, and I think you can play
fairly fast and loose with higher numbered ports. But trying to connect to
port 514 on another virtual machine wasn¹t allowed until I put the user in
the Obey list in the PROFILE TCPIP file.

Also: If I violate this using Pipe and the UDP stage, why don¹t I get a
non-zero return code? The UDP stage quietly accepts records, and the pipe
returns a zero return code, but no data is actually sent. There¹s no errors
in the TCPIP console log either; the data is just ignored and not sent
anywhere. Shouldn¹t there be an indication somewhere that the data wasn¹t
sent? Or (and I confess I haven¹t tried to decode anything in the output
string yet) is there something in the output of the UDP stage that would
indicate that the message failed to send?

-- 
Robert P. Nix  Mayo Foundation.~.
RO-OE-5-55 200 First Street SW/V\
507-284-0844   Rochester, MN 55905   /( )\
-^^-^^
"In theory, theory and practice are the same, but
 in practice, theory and practice are different."

Re: subdirectory create permissions for other users?

[Schuh, Richard]

Filepool administrator.

Usage note 4 under HELP CREATE says, 

 "4.   You cannot create a directory in another user's directory
structure."

Only the owner of the filespace and administrators may create
directories in a given file space.

Regards, 
Richard Schuh 

 

> -Original Message-
> From: The IBM z/VM Operating System 
> [mailto:[EMAIL PROTECTED] On Behalf Of Ian S. Worthington
> Sent: Friday, March 07, 2008 12:22 PM
> To: IBMVM@LISTSERV.UARK.EDU
> Subject: subdirectory create permissions for other users?
> 
> Anyone know what permissions I need to set up to allow 
> another user to create a subdirectory in one of my directories?
> 
> 
> ian
> ... 
> 
> Ian S. Worthington, MBCS.
> 
> me: http://isw.me.uk/ 
> photos: http://gallery.isw.me.uk/ 
> 
> 
> I use and recommend:
> 
> Free 2GB online incremental backups:
>   https://mozy.com/?code=HJW4C8 (code gets you 256MB extra)
> 
> Web hosting and support from $2.99/month:
>   www.cirtexhosting.com/affiliates/idevaffiliate.php?id=463
> 
> (Referral links help support my activities at no cost to you. 
> But feel free to remove them if you wish.)
> 
> 
> Dulce et decorum est pro patria mori, sed dulcius pro patria 
> vivere, et dulcissimus pro patria biber. Ergo, bibiamo pro 
> salute patriae.
> 

Re: subdirectory create permissions for other users?

[Kris Buelens]

With SFS' native security this is impossible, only the filespace owner and
an SFS admin can create subdirectories.  I guess an ESM may change that.
In the past we had a PROP action routine that permitted users with write
access to a dirid to create new subdirs (and the PROP user was SFS admin).

2008/3/7, Ian S. Worthington <[EMAIL PROTECTED]>:
>
> Anyone know what permissions I need to set up to allow another user to
> create
> a subdirectory in one of my directories?
>
>
> ian
> ...
>
> Ian S. Worthington, MBCS.
>
> me: http://isw.me.uk/
> photos: http://gallery.isw.me.uk/
>
>
> I use and recommend:
>
> Free 2GB online incremental backups:
>   https://mozy.com/?code=HJW4C8 (code gets you 256MB extra)
>
> Web hosting and support from $2.99/month:
>   www.cirtexhosting.com/affiliates/idevaffiliate.php?id=463
>
> (Referral links help support my activities at no cost to you. But feel
> free to
> remove them if you wish.)
>
>
> Dulce et decorum est pro patria mori, sed dulcius pro patria vivere, et
> dulcissimus pro patria biber. Ergo, bibiamo pro salute patriae.
>



-- 
Kris Buelens,
IBM Belgium, VM customer support

subdirectory create permissions for other users?

[Ian S. Worthington]

Anyone know what permissions I need to set up to allow another user to create
a subdirectory in one of my directories?


ian 
... 

Ian S. Worthington, MBCS.

me: http://isw.me.uk/ 
photos: http://gallery.isw.me.uk/ 


I use and recommend:

Free 2GB online incremental backups:
  https://mozy.com/?code=HJW4C8 (code gets you 256MB extra)

Web hosting and support from $2.99/month:
  www.cirtexhosting.com/affiliates/idevaffiliate.php?id=463

(Referral links help support my activities at no cost to you. But feel free to
remove them if you wish.)


Dulce et decorum est pro patria mori, sed dulcius pro patria vivere, et
dulcissimus pro patria biber. Ergo, bibiamo pro salute patriae.

Re: Limit of Telent sesssions for SLEs9

[Suleiman Shahin]

Thanks.

Suleiman Shahin



Date: Fri, 7 Mar 2008 13:44:50 -0500
From: [EMAIL PROTECTED]
Subject: Re: Limit of Telent sesssions for SLEs9
To: IBMVM@LISTSERV.UARK.EDU



















See the section on configuring the SSL
server in the TCPIP Planning and Configuration manual. You need to update the
MAXSESS parm in the DTCPARMS file for that userid and restart. 

 











From: The IBM z/VM
Operating System [mailto:[EMAIL PROTECTED] On Behalf Of Suleiman Shahin

Sent: Friday, March 07, 2008 1:35
PM

To: IBMVM@LISTSERV.UARK.EDU

Subject: Limit of Telent sesssions
for SLEs9



 

Greetings VMers!



We are Linux SLES9 to provide SSL telnet connections and the session limit is
100.



What do I need to do to raise that limit? This is under zVM 5.3.





Thanks.





Suleiman Shahin















Need to know the score, the latest news, or you need your
Hotmail®-get your "fix". Check it out.









_
Climb to the top of the charts! Play the word scramble challenge with star 
power.
http://club.live.com/star_shuffle.aspx?icid=starshuffle_wlmailtextlink_jan

Re: Limit of Telent sesssions for SLEs9

[David Boyes]

See the section on configuring the SSL server in the TCPIP Planning and
Configuration manual. You need to update the MAXSESS parm in the
DTCPARMS file for that userid and restart. 

 



From: The IBM z/VM Operating System [mailto:[EMAIL PROTECTED] On
Behalf Of Suleiman Shahin
Sent: Friday, March 07, 2008 1:35 PM
To: IBMVM@LISTSERV.UARK.EDU
Subject: Limit of Telent sesssions for SLEs9

 

Greetings VMers!

We are Linux SLES9 to provide SSL telnet connections and the session
limit is 100.

What do I need to do to raise that limit? This is under zVM 5.3.


Thanks.


Suleiman Shahin







Need to know the score, the latest news, or you need your Hotmail(r)-get
your "fix". Check it out.  

Limit of Telent sesssions for SLEs9

[Suleiman Shahin]

Greetings VMers!

We are Linux SLES9 to provide SSL telnet connections and the session limit is 
100.

What do I need to do to raise that limit? This is under zVM 5.3.


Thanks.


Suleiman Shahin




_
Need to know the score, the latest news, or you need your Hotmail®-get your 
"fix".
http://www.msnmobilefix.com/Default.aspx