--- "K.S. Bhaskar" <[EMAIL PROTECTED]> wrote: > On Mon, 2005-11-28 at 11:07 -0600, Greg Woodhouse wrote: > > [KSB] I know that the VA tends to have users access VistA with a > common > userid. However, systems are more easily secured (and audited) when > users have and use their own userids. I don't know about > configurations > for VistA on other MUMPSen, but for VistA on GT.M, I recommend that > each > user have his/her own user id, and run VistA with that userid. >
You do need to take care that the user is not able to enter gtm in direct mode, though. Granted, there are various ways to accomplish this, but you definitely do not want users starting GTM in direct mode. That being said, I think you are right that it would be preferable from a security point of view to use OS level security and auditing, but VistA wasn't designed this way, and it's not trivial to retrofit this model onto VistA. Perhaps I've misunderstood, but I do not see how your model can work. === Gregory Woodhouse <[EMAIL PROTECTED]> "Interaction is the mind-body problem of computing." --Philip Wadler ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click _______________________________________________ Hardhats-members mailing list Hardhats-members@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/hardhats-members
