> -----Original Message----- > From: IBM Mainframe Discussion List [mailto:[EMAIL PROTECTED] On > Behalf Of Clark Morris > Sent: Friday, January 26, 2007 6:18 AM > To: [email protected] > Subject: Re: Cross Memory and AR ASC Mode > /snip/ > > What are the security implications of allowing uninvited snooping? Is > this a good way to pick up confidential information if someone > understands the application? How does Omegamon handle this and can > the method used be made available assuming the security concerns are > met?
By definition, an authorized program is a trusted program. It can do whatever it wants and is presumed to maintain the confidentiality of any application data that it sees. Placing a program into an APF library is a management policy decision, not a technical issue. If management trusts the author of the program, then let the system security adminstrator and systems programmer put it in the APF library and let it do its thing. Otherwise, just say no. Jeffrey D. Smith Principal Product Architect Farsight Systems Corporation 700 KEN PRATT BLVD. #204-159 LONGMONT, CO 80501-6452 303-774-9381 direct 303-484-6170 FAX http://www.farsight-systems.com/ see my résumé at my website (yes, I am looking for employment) ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
