On Sat, 6 Jun 2009 19:12:35 +0200, R.S. wrote:
>Walt Farrell pisze:
>[...]
>> I agree with the others that you really need to explore what your auditors
>> are intending to accomplish, and provide some education to them.
>
>(This is semi off-topic, since it is - let's say - political issue.)
>The
Walt Farrell pisze:
[...]
I agree with the others that you really need to explore what your auditors
are intending to accomplish, and provide some education to them.
(This is semi off-topic, since it is - let's say - political issue.)
The question is why should I educate auditors?
Why should th
On Wed, 3 Jun 2009 13:22:26 -0500, Mark Baron wrote:
>Does anyone know if there is a way, using CLASS(PROGRAM) in RACF (z/OS V1R8
>and higher) to define all accesses to a given program??
>
>That is:
>
>RDEF PROGRAM(PGMNAME) UACC(NONE) ADDMEM(LIBNAME/VOLUME/NOPADCHK)
>
>will deny access to LIBNAME(
value. That is, find an actual weakness and identify ways to mitigate that weakness.
-Original Message-
From: IBM Mainframe Discussion List [mailto:ibm-m...@bama.ua.edu] On Behalf Of
Rick Fochtman
Sent: Thursday, June 04, 2009 12:39 PM
To: IBM-MAIN@bama.ua.edu
Subject: Re: RACF - CLASS(
ctual weakness and identify ways to mitigate that weakness.
-Original Message-
From: IBM Mainframe Discussion List [mailto:ibm-m...@bama.ua.edu] On Behalf Of
Rick Fochtman
Sent: Thursday, June 04, 2009 12:39 PM
To: IBM-MAIN@bama.ua.edu
Subject: Re: RACF - CLASS(PROGRAM)
You should expla
You should explain to your auditors: anyoine can give any name they like
to any program. The FUNCTION and CAPABILITIES of a program are FAR more
important than the name. Is it APF authorized? is the loadlib APF
authorized? Without proper authorization, with respect to z/OS rules,
it's not very
Rick -
Your analysis is exactly correct - that is precisely what we have been asked
to do (by the auditors).
Thanks for confirming my suspicions.
Mark
--
For IBM-MAIN subscribe / signoff / archive access instructions,
send ema
-:
Hi all -
Does anyone know if there is a way, using CLASS(PROGRAM) in RACF (z/OS V1R8
and higher) to define all accesses to a given program??
That is:
RDEF PROGRAM(PGMNAME) UACC(NONE) ADDMEM(LIBNAME/VOLUME/NOPADCHK)
will
Hi all -
Does anyone know if there is a way, using CLASS(PROGRAM) in RACF (z/OS V1R8
and higher) to define all accesses to a given program??
That is:
RDEF PROGRAM(PGMNAME) UACC(NONE) ADDMEM(LIBNAME/VOLUME/NOPADCHK)
will deny access to LIBNAME(PGMNAME) but only if LIBNAME is on VOLUME.
Simi
9 matches
Mail list logo