In <[EMAIL PROTECTED]>, on 06/08/2007
at 11:31 AM, Paul Gilmartin <[EMAIL PROTECTED]> said:
>But LMTR now runs IEBCOPY, which is the fly in
>the ointment: IEBCOPY requires AC=1, which in turn requires that the
>caller run AC=1. I assume IEBCOPY does all the RACHECKs to ensure
>security. But does this now mean that the FTP child process must
>likewise do RACHECKs for all non-IEBCOPY transfers rather than simply
>defaulting to the checking performed by OPEN?
Why? AC(1) does not imply either ASCBPASS or UID(0). Can you give a
scenario where normal OPEN security isn't good enough?
--
Shmuel (Seymour J.) Metz, SysProg and JOAT
ISO position; see <http://patriot.net/~shmuel/resume/brief.html>
We don't care. We don't have to care, we're Congress.
(S877: The Shut up and Eat Your spam act of 2003)
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
