Matt;
The key to security is tying the user to the Kernel Shell and never
letting the user get to the GTM prompt. If you get to the MUMPS prompt
outside the application, you can do just about anything.
In an application environment, any attempt to break out of the application
should result in the generation of an error trap and the manditory HALT to
drop them out of MUMPS and hopefully off of the machine.
Best wishes; Chris
> I have a basic question about security in VistA. If I access Fileman as
> a regular user (MD)and Inquire the New Person file, I can read the
> number of the administrator. Then if I drop to the GTM prompt and SET
> DUZ=AdminNumber, I can get a programmer's shell without needing a
> access/verify pair.
>
> How does one force password prompting or otherwise stop this from
> happening?
>
> Thanks,
>
> matt
-------------------------------------------------------
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642
_______________________________________________
Hardhats-members mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/hardhats-members
