Isn't it even a bigger problem? The only purpose of having the authority is to issue the commands that require the authority. What prevents such an authorized user from issuing commands that make other users privileged? Or create a new user account with privileges that is not so restricted to this application? Or changing the access controls on APF libraries? Or even turning the security system off?
-----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of Tom Marchant Sent: Friday, April 23, 2010 12:35 PM To: [email protected] Subject: Re: Turning on ACF2 SECURITY Privilege through an exit . . . On Fri, 23 Apr 2010 11:20:04 -0400, Bathmaker, Jon wrote: > >We want the users to have the SECURITY privilege while they are using an >ISPF application and ONLY while they are using this app. How do you prevent the user from using split screen to invoke another application while your app is active? -- Tom Marchant ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
