In a recent note, Binyamin Dissen said: > Date: Tue, 19 Sep 2006 17:53:46 +0300 > > :>o Isn't it equally true that AC=0 programs may fail to clean up > :> after themselves? > > Yes, but they cannot leave things around that may cause an exposure. > I see.
I believe a better design would mark the programs themselves, such as AC=2 to indicate "APF authorized _and_ TMP-clean" rather than burdening the administrators with maintaining YA list, such as the ISV entries I see in our AUTHPGM NAMES. -- gil -- StorageTek INFORMATION made POWERFUL ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html