I ran this exit at my last site. I ran a 'secure' FTP server on a separate port (2121) with this exit along with FTCHKIP. From memory I based these exits on samples in a redbook (TCP/IP Implementation Vol 2?). These redbook samples were far more comprehensive than those provided in the SEZAINST DD.
Implementing the exits was as simple as assembling them to a LOADLIB, APF authorising it and concatenating it in the FTP server proc. As you have alluded since, the SERVAUTH RACF profile along with a SAF statement in your TCPIP PROFILE against your FTPSERVE port, or even PAGENT (policy agent) with z/OS MF configurator may be more straightforward. Cheers, MARK DOUGLAS -----Original Message----- From: IBM Mainframe Discussion List [mailto:IBM-MAIN@bama.ua.edu] On Behalf Of Jake anderson Sent: Friday, 8 June 2012 8:05 PM To: IBM-MAIN@bama.ua.edu Subject: Controlling the FTP server - FTCHKPWD Dear List, Good Day !! To control the FTP server we know we can use FTCHKPWD user exit. Has anyone used this EXIT at your shop to control the FTP access ? Just wanted to understand the method to install this exit and control only the specified user gaining access to FTP server running on Z/OS. Environment : Z/OS 1.8 Resource link : http://publib.boulder.ibm.com/infocenter/zos/v1r11/index.jsp?topic=/com.ibm.zos.r11.halz002/f1a1b391185.htm Any comments or suggestions would help a lot Jake ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: INFO IBM-MAIN ***************************** Disclaimer ***************************** The contents of this electronic message and any attachments are intended only for the addressee and may contain privileged or confidential information. They may only be used for the purposes for which they were supplied. If you are not the addressee, you are notified that any transmission, distribution, downloading, printing or photocopying of the contents of this message or attachments is strictly prohibited. The privilege of confidentiality attached to this message and attachments is not waived, lost or destroyed by reason of mistaken delivery to you. If you receive this message in error please notify the sender by return e-mail or telephone. Please note: the Department of Science, Information Technology, Innovation and the Arts carries out automatic software scanning, filtering and blocking of E-mails and attachments (including emails of a personal nature) for detection of viruses, malicious code, SPAM, executable programs or content it deems unacceptable. All reasonable precautions will be taken to respect the privacy of individuals in accordance with the Information Privacy Act 2009 (Qld). Personal information will only be used for official purposes, e.g. monitoring Departmental Personnel's compliance with Departmental Policies. Personal information will not be divulged or disclosed to others, unless authorised or required by Departmental Policy and/or law. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: INFO IBM-MAIN
