Sounds like a conspiracy to slow the MF down ;- )
Mark Thomen <[EMAIL PROTECTED]> Sent by: IBM Mainframe Discussion List <[email protected]> 02/23/2006 11:19 AM Please respond to IBM Mainframe Discussion List <[email protected]> To [email protected] cc Subject Re: Data Set Name "Hiding" "Jim Marshall" <[EMAIL PROTECTED]> wrote in message news:<[EMAIL PROTECTED]>... > My Security folks are eager to have us implement something called "Dataset > Name Hiding". This will hide dataset names from a user's view if they do > not have the necessary security authority for these files. I am not sure of > all the details as to what RACF permissions are needed "to see" a file. > > Has anyone implemented or evaluate this (most likely) new feature. What > were the effect of implementation. My sense is there might be an > implication of more processor usage depending on what z/OS needs to do to > check if a user may or may not see a line to be displayed on their screen. > I believe this facility is within TSO with ISPF. There are a lot more checks made with RACF to determine if the user has access. You might pay a high price for performance from the components that use it (Catalog, DADSM, CVAF, etc). If you don't give someone RACF access to a file, then they can't open it, dump it, look at it - they'll just know the name. And why is that an issue with the security people? Thanks, Mark Thomen Catalog/IDCAMS/VSAM Development ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
