====================================================== -----Original Message----- From: "Binyamin Dissen" <[EMAIL PROTECTED]> Sent: 7/30/2006 10:13 AM To: "[email protected]" <[email protected]> Subject: Re: APF Authorized Code/Libraries.
On Sun, 30 Jul 2006 09:08:00 -0300 "Shmuel Metz (Seymour J.)" <[EMAIL PROTECTED]> wrote: :>In <[EMAIL PROTECTED]>, on :>07/28/2006 :> at 05:16 PM, Wayne Driscoll <[EMAIL PROTECTED]> said: :>>While that is true, since non-reentrent code loaded out of an APF :>>authorized library is loaded into KEY 8 storage, there is an :>>integrity exposure if said code is loaded into a multi-user address :>>space, since it is open to being modified (by accident or by intent) :>>by a non-authorized program. :>Authorization is at the address space level. Normally it's impossible :>for authorized and unauthorized programs to run concurrently in the :>same address space. If your authorized code circumvents the normal :>safeguards then you have more serious issues than what key the code is :>loaded under. Actually authorization is at the jobstep task level. -- Binyamin Dissen <[EMAIL PROTECTED]> ====================================================== Some TSO commands can be attached authorized. Jeffrey D. Smith Farsight Systems Corporation 24 BURLINGTON DR LONGMONT, CO 80501 303-774-9381 direct 303-709-8153 cell 303-484-6170 fax ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
