In
<[EMAIL PROTECTED]>,
on 10/25/2005
at 06:11 PM, Steve Grimes <[EMAIL PROTECTED]> said:
>I apologize in advance for not knowing the best list to send this
>question to. (Perhaps ISPF-L? But I'm not a subscriber there.)
>I'm proposing to our systems folks that we allow a "user" to use TSO
>to get to the Zeke Work Center function. I'm being told that there
>is no way for us to limit what the user can do if we let them
>intoTSO.
Then you'd better not let them submit batch jobs either, because they
can cause the same damage as a TSO session.
>(Historically, we had RACF practically emasculated.
And *that* is your security problem, not the red herring of TSO
access.
--
Shmuel (Seymour J.) Metz, SysProg and JOAT
ISO position; see <http://patriot.net/~shmuel/resume/brief.html>
We don't care. We don't have to care, we're Congress.
(S877: The Shut up and Eat Your spam act of 2003)
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
