In a recent note, Mark Thomen said: > Date: Tue, 29 Nov 2005 15:31:34 -0800 > > "Knutson, Sam" <[log in to unmask]> wrote in message > news:<[log in to unmask]>... > > > > It turns out the new message is documented in the z/os V1.7 MVS System > > Messages Vol 6. > > > > 12 Explanation: An attempt to alter a data set's security > > information was rejected. Security information is no > > longer supported in catalogs. > > Programmer Response: Remove the security-related > > parameters (READPW, UPDATEPW, MASTERPW, CONTROLPW, > > ATTEMPTS, CODE, AUTHORIZATION) and retry the alter > > request. > > > > > > Apparently the loophole for allowing these to pass is closed at z/OS R5 > > for IDCAMS ALTER. Starting from that > > release, those unsupported parms will lead to IDC3009I RC18 RSN12. > > We were gradually removing the code in each new release, but honoring > requests to extract the data because down-level systems could be still > using the passwords (i.e. systems sharing the same catalog). As of > HDZ11H0, the code was removed and security information is no longer kept in > the catalog records. > Good, however belated. READPW (if I guess its meaning as an extract function) should never have existed.
o No secure system should _ever_ disclose a password to someone not authorized to access the object it protects. o Anyone not knowing the password is presumed not to be so authorized. "I forgot" is no excuse. -- gil -- StorageTek INFORMATION made POWERFUL ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
