On Thu, 30 Apr 2009 12:28:30 +0200, R.S. <[email protected]> wrote:
>There is no wise reason to restrict access to ADRDSSU at all (in PROGRAM >class). Really. There is a need to protect ADRDSSU *functions* or >features. It can be usage of ADMIN keyword (a series of profiles >STGADMIN.ADR.STGADMIN.function.minor). >In the case above you could have access to STGADMIN.ADR.IMPORT, which is >not unsecure IMHO. YMMV. Speaking of restrictions, I as a programmer like to use COPY DATASET with RENAMEUNCONDITIONAL/REPLACEUNCONDITIONAL to copy into a file with a new name. I get the following: TSS7250W 136 J=COPY1 A=FJS TYPE=IBMFAC RESOURCE=STGADMIN.ADR.COPY.FLASHCPY TSS7251W Access Denied to IBMFAC <STGADMIN.ADR.COPY.FLASHCPY> I can add FASTREPLICATION(NONE) and I no longer get this error. So the question is, should I as an applications developer have access to STGADMIN.ADR.COPY.FLASHCPY? Obviously it would help me in this case, but would it also allow me to do things that I probably should not be able to do? Frank ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
