Re: Mark your calendars for July 10, 2022 - CustomPac intended removal date

is out of my price range. Plenty of grunt in a cheap setup for doing analytics and the Linux/Docker work I'm interested in. On 5/19/2022 6:15 PM, David Crayford wrote: On 20/5/22 08:23, Andrew Rowley wrote: Having a zIIP gives you plenty of horsepower for z/OSMF, and having an IBM z15

Re: Mark your calendars for July 10, 2022 - CustomPac intended removal date

On 20/5/22 08:23, Andrew Rowley wrote: Having a zIIP gives you plenty of horsepower for z/OSMF, and having an IBM z15 gives you System Recovery Boost which gives you…plenty of horsepower for z/OSMF at least during the first 60 minutes. (It’s the z/OSMF startup that can take a long time on a

Re: z/OS Data Set File System (DSFS) Now Available

On 9/5/22 07:39, Andrew Rowley wrote: On 6/05/2022 11:46 pm, Bill Schoen wrote: By all means ask for what you need, and who knows... What would be useful is to be able to mount a (multi-level) dataset prefix at any mount point in the filesystem. Attributes i.e. text, record mode etc would

Re: New IBM Open C++ compiler

My bad, -m32. I've beta tested the compiler and I can confirm it works. On 6/5/22 07:08, David Crayford wrote: The compiler supports a -m31 flag and ships with a 31bit runtime library. On 6 May 2022, at 5:56 am, Charles Mills wrote: Got it. Must insert some sort of glue if you call

Re: New IBM Open C++ compiler

or am I being old-fashioned? >> >> Charles >> >> >> -Original Message- >> From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On >> Behalf Of David Crayford >> Sent: Thursday, May 5, 2022 7:20 AM >> To: IBM-MAIN@LISTSE

New IBM Open C++ compiler

The new clang/LLVM C/C++ compiler has been announced https://community.ibm.com/community/user/ibmz-and-linuxone/blogs/robert-barrington1/2022/04/05/next-generation-of-ibm-cc-and-fortran-compilers-av. I suppose it was wishful thinking to expect it to be free as IBM have commit a lot of resources

Re: Use of zCX

6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7Csdata=T9iby7JlClkVTybxiXBCI0VIrtkplMWIh1kLLeZXxCs%3Dreserved=0 - KB --- Original Message --- On Monday, April 25th, 2022 at 7:41 AM, David Crayford dcrayf...@gmail.com wrote: On 23/4/22 14:10, kekronbekron wrote: Building the s390x containers

Re: Checksum of "legacy" load module?

You can always fall back on good old cksum which is usually good enough. cat "//'SYS1.LPALIB(IEFBR14)'" | cksum On 27/4/22 07:31, Charles Mills wrote: FSUMF437 ICSF is required but not available. :-( Charles -Original Message- From: IBM Mainframe Discussion List

Re: Use of zCX

On 26/4/22 01:03, Matt Hogstrom wrote: Given this constraint, we try to put CPU-intensive activities (such as code page conversion) on the faster-executing platforms. and for that reason zCX is very important for ISVs because it does offload to Ziips, provides an open technology platform and

Re: Use of zCX

On 25/4/22 11:37, kekronbekron wrote: What about code that does CPU instruction set specific things. How likely is the success of its compilation on s390x with minimal work. About 100% likely. Linux is Linux is Linux. IBM have ported all the compiler tool-chains such a GCC, LLVM/Clang etc. In

Re: Use of zCX

Message --- On Friday, April 22nd, 2022 at 9:49 PM, Matt Hogstrom wrote: On Apr 22, 2022, at 3:42 AM, David Crayford dcrayf...@gmail.com wrote: If you already deliver container images that support your product that currently run outside z/OS, or if that’s what you plan to do, it’d be a great

Re: Use of zCX

to be proved wrong. - KB --- Original Message --- On Friday, April 22nd, 2022 at 6:32 AM, David Crayford wrote: On 22/4/22 03:35, Charles Mills wrote: I am not a "corporate shop" guy but apparently "put up a VM LPAR" is a huge political leap for many

Re: Use of zCX

On 23/4/22 06:00, Phil Smith III wrote: David Crayford wrote: Don't mean to put you on the spot Phil, but can you elaborate? Is there a big drop off in Linux on Z users? Did the poster children move to x86 systems? Well, the several examples I can think of moved the workload elsewhere

Re: Use of zCX

On 23/4/22 00:19, Matt Hogstrom wrote: On Apr 22, 2022, at 3:42 AM, David Crayford wrote: If you already deliver container images that support your product that currently run outside z/OS, or if that’s what you plan to do, it’d be a great idea to add s390x compatibility to your container

Re: Use of zCX

On 22/4/22 13:43, Timothy Sipples wrote: David Crayford wrote: Right, but zCX is not free. Actually it’s no additional charge for 90 days. However, “it’s not free” is not a meaningful argument. It’s *never* free to run applications in an enterprise context at least. What matters is whether

Re: Use of zCX

On 22/4/22 03:35, Charles Mills wrote: I am not a "corporate shop" guy but apparently "put up a VM LPAR" is a huge political leap for many z/OS shops. The idea is facilitating "if we could just get one instance of Linux up under z/OS we could show that to senior management and take it from

Re: Use of zCX

On 22/4/22 05:32, Phil Smith III wrote: Linux on Z in general seems to be fading, which makes me very sad: several of the poster children have backed away completely Don't mean to put you on the spot Phil, but can you elaborate? Is there a big drop off in Linux on Z users? Did the poster

Re: Use of zCX

On 21/4/22 06:00, Robert Garrett wrote: I've dabbled with it some, enough to bring up an instance and get a couple of containers running under it, a REDIS database instance for example. I ported Redis to z/OS many years ago. I updated it to v5 a couple of years back. I handed it over to our

Re: Use of zCX

A well timed question. We are also exploring zCX and would like to know how widely it has been adopted. There is no doubt that customers can save a lot of money by exploiting zCX workloads running on zIIPs. There's an interesting paper from IBM WRT offloading MQ workloads

Re: HS student with question about small mainframe DASD

On 16/4/22 06:58, Grant Taylor wrote: Hi, I am a US high school student who is seriously considering acquiring a z114 mainframe. I hope that I don't come off too wrong when I ask, but why do you want a z114?  --  I completely get wanting a mainframe.  --  But why a z114? Hardware geeks

Re: View ASCII Command inUSS

On 14/4/22 09:14, Paul Gilmartin wrote: On Thu, 14 Apr 2022 08:46:50 +0800, David Crayford wrote: Can the behavior be replicated with /bin/sh? Worth a try. Indeed. If the same bug exists in both shells Rocket is likely to fix it sooner than IBM. The fact that it's using pipe operators

Re: View ASCII Command inUSS

On 13/4/22 21:24, Paul Gilmartin wrote: On Wed, 13 Apr 2022 14:19:48 +0800, David Crayford wrote: I suspect a bug with bash. You should post your repeatable test case on Rockets z/OS Open Source Ported Tools forum. Can you enter bash --version to get the version. I know Rocket recently

Re: View ASCII Command inUSS

I suspect a bug with bash. You should post your repeatable test case on Rockets z/OS Open Source Ported Tools forum. Can you enter bash --version to get the version. I know Rocket recently released a new ASCII version of bash using their z/OS port of gcc. On 12/4/22 20:32, Michael Babcock

Re: [EXTERNAL] Re: z16 video

I think it's safe to say it will be the only mainframe related video on YouTube with 1.4M views :) On 7/4/22 05:23, Tom Brennan wrote: https://youtu.be/ZDtaanCENbc?t=1128 Sounds like sysplex to me, but "CICSPlex" appears in text on the video (I have CC turned off).  I'm guessing someone he

Re: [EXTERNAL] Re: z16 video

Here's an idea. Instead of whinging about it on here why not leave a comment on YouTube? Don't worry, I've just done it. On 7/4/22 04:49, Pommier, Rex wrote: Or the transcription was done through software with no human hands, it misheard SYSPLEX as CICSPlex, and happens to know how to spell

Re: z16 video

On 6/4/22 02:50, Matt Hogstrom wrote: Just finished watching this … best overview of Z in general Agreed. I subscribe to Linux Tech Tips as I build my own PCs. It's great to see him in wide eyed admiration for a mainframe. The insane amount of redundancy and I/O bandwidth is very different

Re: z16 video

On 6/4/22 04:52, Pommier, Rex wrote: The writing kept referring to the "cash" on the processor instead of the "cache". haha. Somebody doesn't get the joke! -- For IBM-MAIN subscribe / signoff / archive access instructions,

Re: [MVS-OE] Running z/OS Unix commands from an MVS sequential dataset

I won't be losing any sleep over it! I have seen many IBM installation scripts that rely on cat supporting data sets. Just for fun, here is a list of z/OS UNIX core-utils that use fopen(). Binary file /bin/ar matches Binary file /bin/as matches Binary file /bin/asa matches Binary file /bin/at

Re: PL/I question

e = fopen(...)) ... // executes code if fopen is successful > > Charles > > > -Original Message- > From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On > Behalf Of David Crayford > Sent: Tuesday, March 29, 2022 7:49 PM > To: IBM-MAIN@LISTSERV.U

Re: PL/I question

On Tue, 2022-03-29 at 15:10 -0700, Charles Mills wrote: > Well, while we are digressing ... > > There was discussion earlier of the use of the equal sign for assignment > versus comparison. > > I am going to guess that THE most common cause of C/C++ program errors is the > mis-use of = for

Re: PL/I question

Me too > On 29 Mar 2022, at 19:48, Jay Maynard wrote: > > I'm not going to speak for Robin, but to me, yes, it does. > >> On Tue, Mar 29, 2022 at 6:46 AM Seymour J Metz wrote: >> >> I'm not going to mention all of them, but you obviously noticed that I >> mentioned DO. >> >> Are you

Re: UNIX CHAR FILES

On Thu, 2022-03-24 at 20:26 -0500, Paul Gilmartin wrote: > On Thu, 24 Mar 2022 19:29:03 -0500, Kirk Wolf wrote: > > > The ISPF display for special files only says "Char", which doesn't tell you > > enough. > > > > To see what it really is, you need to do "ls -al: command: > > On my z/OS V2R4

Re: looking for 'how to' developing Rexx host command

Behalf Of > Paul Gilmartin > Sent: Tuesday, March 22, 2022 9:31 AM > To: IBM-MAIN@LISTSERV.UA.EDU > Subject: Re: looking for 'how to' developing Rexx host command > > EXTERNAL EMAIL > > On Mon, 21 Mar 2022 11:35:51 +0800, David Crayford wrote: > > > Wouldn't a SAMPLI

Re: looking for 'how to' developing Rexx host command

gt; prefer something along the lines of Icon. > > > -- > Shmuel (Seymour J.) Metz > http://mason.gmu.edu/~smetz3 > > > From: IBM Mainframe Discussion List [IBM-MAIN@LISTSERV.UA.EDU] on behalf of > David Crayford [dcrayf...@gm

Re: looking for 'how to' developing Rexx host command

el (Seymour J.) Metz > http://mason.gmu.edu/~smetz3 > > > From: IBM Mainframe Discussion List [IBM-MAIN@LISTSERV.UA.EDU] on behalf of > David Crayford [dcrayf...@gmail.com] > Sent: Monday, March 21, 2022 10:12 PM > To: IBM-MAIN@LISTSERV.UA.ED

Re: HLL support for interfaces that use R0

If the intention is to get the address of the REXX environment block which is passed in R0 then that problem is solved by calling IRXINIT with the FINDENVB function. https://www.ibm.com/docs/en/zos/2.3.0?topic=irxinit-parameters On Mon, 2022-03-21 at 14:44 +, Seymour J Metz wrote: > A

Re: looking for 'how to' developing Rexx host command

- > Shmuel (Seymour J.) Metz > http://mason.gmu.edu/~smetz3 > > > From: IBM Mainframe Discussion List [IBM-MAIN@LISTSERV.UA.EDU] on behalf of > David Crayford [dcrayf...@gmail.com] > Sent: Monday, March 21, 2022 9:08 AM > To: IB

Re: looking for 'how to' developing Rexx host command

> From: IBM Mainframe Discussion List [IBM-MAIN@LISTSERV.UA.EDU] on behalf of > David Crayford [dcrayf...@gmail.com] > Sent: Monday, March 21, 2022 8:28 AM > To: IBM-MAIN@LISTSERV.UA.EDU > Subject: Re: looking for 'how to' developing Rexx host command > >

Re: looking for 'how to' developing Rexx host command

lar expressions when I discovered PEGs http://lua-users.org/wiki/LpegRecipes. > > > -- > Shmuel (Seymour J.) Metz > http://mason.gmu.edu/~smetz3 > > > From: IBM Mainframe Discussion List [IBM-MAIN@LISTSERV.UA.EDU] on behalf o

Re: looking for 'how to' developing Rexx host command

On Sun, 2022-03-20 at 10:08 -0500, Paul Gilmartin wrote: > On Sun, 20 Mar 2022 07:56:39 -0700, Charles Mills wrote: > > > TSO/E Rexx Reference Chapter 14. Language Processor Environments? > > > Wouldn't a SAMPLIB member be nice? In a HLL? Writing a REXX command processor in a HLL is

Re: Python log parsing library available

tion is also available on PyPi and > ReadtheDocs, as with other python libraries. > > Also, github was having some issues yesterday; if you try again, it may work > today. > > From: IBM Mainframe Discussion List on behalf of > David Crayford >

Re: Python log parsing library available

Original Message- > From: IBM Mainframe Discussion List On Behalf Of > David Crayford > Sent: Thursday, March 17, 2022 8:09 PM > To: IBM-MAIN@LISTSERV.UA.EDU > Subject: Re: Python log parsing library available > > I get a 404 on your Github account. Is it private? &

Re: Python log parsing library available

I get a 404 on your Github account. Is it private? > On 18 Mar 2022, at 3:11 am, Kevin Mckenzie wrote: > > If anyone else has a need for this, I wanted to let people know that I’ve > released a z/OS log parsing library for Python, available from PyPi, called > zoslogs. On PyPi, you can find

Re: CDC implementation

On Wed, 2022-03-16 at 22:53 +0530, Ambrose Jr wrote: > Hello All, > > I'm new to CDC implementation and we are in plan to do POC for data > replication from mainframe to distributed side. We planned a setup like > *VSAM->CDC(infosphere)->Kafka->mongoDB*. I have more concern with Kafka to >

Re: Passwordless login omvs

ssh-keygen normally does the right thing with file permissions etc. To copy keys to remote systems I run: ssh-copy-id @ z/OS does not ship ssh-copy-id but it's easy to pipe into ssh and create the .ssh directory if it doesn't already exist. cat ~/.ssh/id_rsa.pub | ssh @ 'umask 0077; mkdir -p

Re: Gzip for zOS

s Node.js, programming languages such as Python and golang and are currently working on a open source port of clang/LLVM. > > On Fri, Mar 11, 2022, 8:19 PM Tony Harminc wrote: > > > On Fri, 11 Mar 2022 at 00:32, David Crayford wrote: > > > On Thu, 2022-03-10 at 20:35 -0500, Tony

Re: Gzip for zOS

On Thu, 2022-03-10 at 20:35 -0500, Tony Harminc wrote: > On Thu, 10 Mar 2022 at 19:59, David Crayford > wrote: > > The short URL I posted seems broken. Try this > > https://shorturl.at/fuCQV > > That one too seems broken. Could you post the actual URL rather than >

Re: Gzip for zOS

The short URL I posted seems broken. Try this https://shorturl.at/fuCQV On Thu, 2022-03-10 at 18:38 -0600, Paul Gilmartin wrote: > On Fri, 11 Mar 2022 07:57:40 +0800, David Crayford wrote: > > > Massimo is correct. Ported tools are now installed using miniconda. > > See this

Re: Gzip for zOS

Massimo is correct. Ported tools are now installed using miniconda. See this thread for details which includes links to documentation and videos shorturl.at/gAC39 > On 10 Mar 2022, at 9:57 pm, Massimo Biancucci wrote: > > Peter, > > if I well understood, guys not paying can install such

Re: ZAD and C/C++ (was:: 2.5 Heads Up)

On Tue, 2022-03-01 at 10:35 -0800, Charles Mills wrote: > Well, I am not the C standard, but you can find it online. > > I believe nullptr is numerically equal to zero, but it is a pointer > type. It > is perhaps equivalent to (void *)0 nullptr is a pointer literal of type std::nullptr_t, and

Re: creating a python login module

Regards, Erik. On Tue, 22 Feb 2022 08:35:50 +0800, David Crayford wrote: On 22/2/22 4:59 am, Erik Janssen wrote: Well, the routine I wrote can handle a user, password or passphrase and optionally an APPL to verify against. So, even though there are a lot of options to do it different, I was more

Re: creating a python login module

On 22/2/22 4:59 am, Erik Janssen wrote: Well, the routine I wrote can handle a user, password or passphrase and optionally an APPL to verify against. So, even though there are a lot of options to do it different, I was more looking for ways how such a 'service routine' that needs apf

Re: creating a python login module

https://github.com/zowe/sample-spring-boot-api-service/blob/master/zowe-rest-api-sample-spring/docs/zos-security.md > On 21 Feb 2022, at 9:18 pm, David Crayford wrote: > > There is a sample Zowe Spring Boot micro service that can stand alone with > no external Zowe dependencies w

Re: creating a python login module

There is a sample Zowe Spring Boot micro service that can stand alone with no external Zowe dependencies which you can use to decouple access control/authentication from your application. > On 21 Feb 2022, at 9:08 pm, David Crayford wrote: > > You can do all of that in C c

Re: creating a python login module

You can do all of that in C code using the __passwd() and __check_resource_auth_np library functions. You will need to be program controlled which means Python and it's runtime will also need to be platform controlled. Most modern services do this using an API like the Zowe authenication API.

Re: MVS in the CLOUD

Wazi looks awesome! It's not quite clear to me if the Wazi containers are running emulated on x86 or if the containers are running on z/OS using something similar to z/CX. Maybe Tim can answer. On 19/2/22 2:23 am, Farley, Peter x23353 wrote: Isn't the recent WAZI offering from IBM exactly

Re: Rexx routine to dump all variables when debugging?

rested in. The youngsters I work with are in their 30s ;) —-rony Rony G. Flatscher (mobil/e) Am 18.02.2022 um 04:35 schrieb David Crayford : Does REXX (any implementation other than the JVM) have introspection capabilities? I suspect not as the only type is a string. On 17/2/22 1:07 am, Farley,

Re: Rexx routine to dump all variables when debugging?

Does REXX (any implementation other than the JVM) have introspection capabilities? I suspect not as the only type is a string. On 17/2/22 1:07 am, Farley, Peter x23353 wrote: Sent to both IBM-MAIN and TSO-REXX Is there any available routine / function package that a z/OS TSO Rexx program can

Re: Rexx routine to dump all variables when debugging?

Not that I know of. REXX is a relic and doesn't have any introspection features. On 17/2/22 1:07 am, Farley, Peter x23353 wrote: Sent to both IBM-MAIN and TSO-REXX Is there any available routine / function package that a z/OS TSO Rexx program can use like the oorexx function SysDumpVariables

Re: Holy Moly ...

On 16/2/22 10:22 pm, Bill Johnson wrote: LOLOLOLOL, what does that even mean? Uber is a prime example of NEGATIVE cash flow. They’ve NEVER turned a profit to date & their negative cash flow has been in the billions since they went public in 2019. Explains why the stock is significantly below

Re: Fwd: Log4j hearing: 'Open source is not the problem'

On 16/2/22 4:04 am, Radoslaw Skorupka wrote: W dniu 14.02.2022 o 20:58, David Crayford pisze: On 15/2/22 3:48 am, Phil Smith III wrote: While clearly closed source is no more likely to be randomly secure than open source, the fact that the source is available for open source (by definition

Re: Holy Moly ...

On 15/2/22 5:19 am, Matt Hogstrom wrote: there is always RetroComputing as well … they love nostalgic questions That's awesome! The perfect space :) https://stackoverflow.com/ https://superuser.com/ https://serverfault.com/

Re: Holy Moly ...

uld enjoy learning "new stuff" if only they were given the opportunity to do so. YMMV of course, but I wanted to make the point that not ALL "old timers" are technophobes of the "new stuff". Peter -Original Message----- From: IBM Mainframe Discussion List On Be

Re: Holy Moly ...

to. -Original Message- From: IBM Mainframe Discussion List On Behalf Of David Crayford Sent: Monday, February 14, 2022 3:26 PM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: Holy Moly ... You make some good points in this post. None of us on this forum are getting any younger and IBM-MAIN doesn't seem

Re: Holy Moly ...

On 15/2/22 4:31 am, Matt Hogstrom wrote: I’d suggest / welcome others to join StackOverflow, SuperUser and ServerFault. The tags you are most interested in would be [mainframe,zos,cobol,db2] Server fault also to a lesser extent. StackOverflow is more of a programming site and SuperUser

Re: Holy Moly ...

You make some good points in this post. None of us on this forum are getting any younger and IBM-MAIN doesn't seem to attract young people who prefer platforms like Stack Overflow or Slack workspaces. It may be an unpopular opinion, but it's important to concentrate on millenials now. A large

Re: Fwd: Log4j hearing: 'Open source is not the problem'

On 15/2/22 3:48 am, Phil Smith III wrote: While clearly closed source is no more likely to be randomly secure than open source, the fact that the source is available for open source (by definition!) does perhaps change the equation a bit. The question I have ZERO data to answer is: If a hacker

Re: Coding IF statement in BPXBATCH shell

@LISTSERV.UA.EDU] on behalf of David Crayford [dcrayf...@gmail.com] Sent: Friday, February 11, 2022 9:02 PM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: Coding IF statement in BPXBATCH shell My advice is not to use BPXBATCH, it's garbage! Run, don't walk, over to Dovetailed Softwares website and download

Re: Fwd: Log4j hearing: 'Open source is not the problem'

On 13/2/22 1:03 am, Charles Mills wrote: Nobody asked me, but I think David buried the most important point in the middle. I have seen lots of TERRIBLE code written by "engineers from big tech." That's not the key point. The key point is the code is in the open and can be scrutinized by

Re: Fwd: Log4j hearing: 'Open source is not the problem'

project. Charles -Original Message- From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf Of David Crayford Sent: Friday, February 11, 2022 11:39 PM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: Fwd: Log4j hearing: 'Open source is not the problem' On 12/2/22 4:56 a

Re: Coding IF statement in BPXBATCH shell

which supports MVS data sets and the JES spool. It also supports file tagging in the file system so I've dumped FTP for good. On 12/2/22 10:02 am, David Crayford wrote: My advice is not to use BPXBATCH, it's garbage! Run, don't walk, over to Dovetailed Softwares website and download their Co:Z

Re: Fwd: Log4j hearing: 'Open source is not the problem'

On 12/2/22 4:56 am, Radoslaw Skorupka wrote: Well, who said it is not a problem??? I do. I maintain that proprietary code has just as many vulnerabilities as open source. In fact, I would suggest that open source code is better as the standard of engineer tends to be much higher than your

Re: Coding IF statement in BPXBATCH shell

My advice is not to use BPXBATCH, it's garbage! Run, don't walk, over to Dovetailed Softwares website and download their Co:Z toolkit. There is a batch utility called COZBATCH which allows you to run shell scripts from data sets, including inline JCL. Co:Z toolkit is free with optional paid

Re: Rocket Vim fileencoding (was: ... ASCII ...)

the following in my .bash_profile alias 'vi=vim' From: IBM Mainframe Discussion List on behalf of David Crayford Sent: Thursday, February 10, 2022 9:07 AM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: Rocket Vim fileencoding (was: ... ASCII ...) On 10/2

Re: Rocket Vim fileencoding (was: ... ASCII ...)

@LISTSERV.UA.EDU] on behalf of David Crayford [dcrayf...@gmail.com] Sent: Wednesday, February 9, 2022 6:15 PM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: Rocket Vim fileencoding (was: ... ASCII ...) On 9/2/22 9:40 pm, Paul Gilmartin wrote: On Wed, 9 Feb 2022 15:20:52 +0800, David Crayford wrote: On 9/2/22

Re: Rocket Vim fileencoding (was: ... ASCII ...)

On 9/2/22 9:40 pm, Paul Gilmartin wrote: On Wed, 9 Feb 2022 15:20:52 +0800, David Crayford wrote: On 9/2/22 12:48 pm, Paul Gilmartin wrote: ... I ran Vim on z/OS. It's part of the Rocket Ported Tools suite. It's uses enhanced ASCII like all of the ported tools. Have you played with Vim

Re: ISPF edit, file tagging and ASCII conversion

On 9/2/22 12:48 pm, Paul Gilmartin wrote: ... I ran Vim on z/OS. It's part of the Rocket Ported Tools suite. It's uses enhanced ASCII like all of the ported tools. Have you played with Vim ":set fileencoding=..."? It works splendidly on Linux. No need. I'm convinced that ISPF edit does

z/OS gawk port updated to version 5.1.60

I've upgraded gawk to version 5.1.60 using IBMs clang compiler. It made life simple :) This port does not support MVS data sets, that's a heavy lift. If you want to use data sets then use "cat" to pipe them in. It's uses EBCDIC and is not compiled to use enhanced ASCII.

Re: ISPF edit, file tagging and ASCII conversion

On 9/2/22 9:28 am, Paul Gilmartin wrote: On Wed, 9 Feb 2022 08:45:19 +0800, David Crayford wrote: On 8/2/22 11:06 am, Paul Gilmartin wrote: ... The characters are supported in all code pages. They are just in the wrong code-point when translating between IBM-273 and ISO8859-1. I have

Re: ISPF edit, file tagging and ASCII conversion

On 8/2/22 11:06 am, Paul Gilmartin wrote: ... The characters are supported in all code pages. They are just in the wrong code-point when translating between IBM-273 and ISO8859-1. I have formed the opinion that the ISPF editor does no honor code pages and only supports translation between

Re: ISPF edit, file tagging and ASCII conversion

On 8/2/22 9:27 am, Tony Harminc wrote: On Mon, 7 Feb 2022 at 15:23, Paul Gilmartin <000433f07816-dmarc-requ...@listserv.ua.edu> wrote: On Tue, 8 Feb 2022 03:20:27 +0800, David Crayford wrote: We recently had a problem where a customer using a German codepage (IBM-273) used th

ISPF edit, file tagging and ASCII conversion

We recently had a problem where a customer using a German codepage (IBM-273) used the ISPF editor to edit a z/OS UNIX file tagged ISO8859-1. The ISPF editor translated the file to EBCDIC (don't ask me why it does that. I much rather it stay in ASCII). Anyway, it was a YAML document and they

Re: More of LOG4J

The HLASM code with the WTO messages was test code. The sploit is all in the C code. It’s recursive and takes a while to grok. Very clever. > On 31 Jan 2022, at 22:56, Tom Brennan wrote: > > On 1/30/2022 11:11 PM, David Crayford wrote: > >> See my other post for

Re: More of LOG4J

On 31/1/22 2:28 pm, Tom Brennan wrote: Yes, it's probably just me still interested in the details of the hack. So bear with me and I promise to be quiet soon. So if they had a non-admin id, they certainly could have setup 443 as a client to dump an unprotected RACF DB to a remote server. None

Re: More of LOG4J

On 31/1/22 10:52 am, Bob Bridges wrote: I've been away a while; are we talking about Logica again? You may be thinking of inet.conf, an OMVS file that I'm-not-an-OMVS-expert-but I'm sure is supposed to be write-protected against non-admins. They got access to root so can change any file in

Re: More of LOG4J

On 31/1/22 4:09 am, Itschak Mugzach wrote: Once they got root, they were able to unload racf DB that was not well protected and run an (open source) password cracker. They had time to get many user passwords. Wrong! The "John the Ripper" cracking of RACF data bases was a separate incident.

Re: More of LOG4J

On 29/1/22 11:53 pm, Itschak Mugzach wrote: It seems you haven't read the link you sent... This article says exactly what I claim. It was a UUS (aka UNIX) vulnerability that helped them get UID 0. This is how it started. You've changed direction now from open source to z/OS UNIX. Are you

Re: More of LOG4J

On 29/1/22 12:53 am, Phil Smith III wrote: pipeline every time we merge into our development branch or master. I know YOU know this, David, but it bears stating explicitly: none of these tools would (did) detect the log4j vuln. I'm cognizant to that. Humans find vulnerabilities. In the

Re: Decimal Floating Point revisited

I suspect the calculations are done using software libraries such as Java BigDecimal. Cowlishaw is cited as an author in that class. On z/OS they may include JIT intrinsics where possible and use Decimal FP. I've seen this in the Data Access Accelarator library.

Re: More of LOG4J

On 27/1/22 10:19 pm, Mike Schwab wrote: On Thu, Jan 27, 2022 at 10:12 AM David Crayford wrote: On 27/1/22 2:35 pm, ITschak Mugzach wrote: At Solarwind, twice the size of Rocket, the toxic code was injected during the build process, by someone(s) penetrated long before they started

Re: More of LOG4J

? What I find disconcerting is that nobody noticed malicous code in the code reviews and pull requests. ITschak ITschak Mugzach *|** IronSphere Platform* *|* *Information Security Continuous Monitoring for z/OS, x/Linux & IBM I **| z/VM coming soon * On Thu, Jan 27, 2022 at 4:03 AM D

Re: AW: z/OS port of gawk

nybody should be able to downloading as they can with IBMs Node.js and Python ports. Cheers - David Von: IBM Mainframe Discussion List im Auftrag von David Crayford Datum: Dienstag, 21. Dezember 2021 um 12:45 An: IBM-MAIN@LISTSERV.UA.EDU Betreff: z/OS port of gawk I've plonked the gawk fo

Re: More of LOG4J

On 27/1/22 3:36 am, ITschak Mugzach wrote: It is a nightmare to vendors and clients looking for potential security issues. Not if they invest in state of the art tooling. Black Duck and Polaris make short work of scanning for vulnerabilities. FRom other hand, open source is here to stay.

Re: More of LOG4J

On 26/1/22 11:31 pm, Kirk Wolf wrote: Good companies have policies and processes for approving any open source used internally. What's the alternative, write everything from scratch? Surely there will be no vulnerabilities there:-) It's company policy where I work to perform code scans

Re: More of LOG4J

On 27/1/22 4:35 am, Tom Brennan wrote: Those are things we don't like to talk about :) Indeed! And even less talked about: What's to stop a trusted ISV or even IBM from being hacked or having a rogue employee that does the same? Absolutely nothing. Any executable code that runs authorized

Re: More of LOG4J

On 19/1/22 12:41 am, Kirk Wolf wrote: Since I would guess that a majority of ibm-mainers would agree that open source is confusing and dangerous, here's a question: Let's say that an organization wanted to prohibit open source. How would you go about it? Good question. First off, you won't

Re: More of LOG4J

On 17/1/22 10:34 pm, ITschak Mugzach wrote: Hi, We took the time to dive into the wider issue of open source and z/os. USS is a scary jungle! Only to the ignorant. Without many details on the how, we discovered that on our z/os 2.3 there are 19 (!) different versions of Apache Ant: 1.5.3,

Re: Installing a certificate

OpenSSL ru s natively on z/OS. You can download it from Rockets Ported Tools. It’s also trivial to port OpenSSL if you have a C compiler. > On 17 Jan 2022, at 6:43 am, Charles Mills wrote: > > OpenSSL runs native under Windows. I do it all the time. (Win 10, 64-bit, > Pro, FWIW) > >

Re: Ad message paradigm (Re: Ad NetRexx (Re: Ad programming features (Re: ... Re: Top 8 Reasons for using Python instead of REXX for z/OS

ut the Rexx manuals. On 1/10/2022 8:46 PM, David Crayford wrote: On 10/1/22 11:15 pm, Seymour J Metz wrote: ooRexx will never be high speed because it's implementation is fundamentally ineffecient. That seems to be begging the question. Certainly the current implementation is inefficie

Re: Can I use a NAS attached to z/OS

On 12/1/22 8:34 am, Wayne Bickerdike wrote: Fundi, now Rocket, bought a licence for MFNetdisk. Dave Crayford might know if it's still available or in use. We used it up for HSM ML2 until we purchased a second hand ATL. It was a very innovative product and worked well. However, like all

<    1   2   3   4   5   6   7   8   9   10   >