Richard Tsujimoto wrote:
I'm no security expert, but the impression I get from other products that do securitychecking on behalf of other users, is that, as someone earlier posted, a RACROUTE is performed using the subject's userid. It seems inappropriate to have to muck with the TCB.
Updating TCBSENV is often required (and expected). It's one thing if you're issuing your own RACROUTE. It's quite another if RACROUTE is being issued on your behalf, e.g., inside OPEN.
-- Edward E Jaffe Phoenix Software International, Inc 5200 W Century Blvd, Suite 800 Los Angeles, CA 90045 310-338-0400 x318 [EMAIL PROTECTED] http://www.phoenixsoftware.com/ ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
