I suggest you try the RACF List, but: 1. Protect all database amd their back-ups. 2. He does NOT have access to any passwords. They are not stored. In simple terms the userid is encrypted, using the password when first set, and that is what is stored. Then, with each sign on, the supplied password is used to re-encrypt the userid. If matched sign-on is successful.
There arw more details, but I did say 'simple'. - Ted MacNEIL [email protected] Twitter: @TedMacNEIL -----Original Message----- From: mmjuma <[email protected]> Sender: IBM Mainframe Discussion List <[email protected]> Date: Sat, 17 Aug 2013 11:02:29 To: <[email protected]> Reply-To: IBM Mainframe Discussion List <[email protected]> Subject: RACF Database protection Hi list Some one in our section, he was able to download RACF data base file SYS1.RACF.PRIM via ftp to PC, then he used some tool. He was able to get uid and password of some users. He had now access to the file in mainframe. I want to understand what happend, and how to protect against such issue. Send from Samsung Mobile ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
