> -----Original Message-----
> From: IBM Mainframe Discussion List On Behalf Of Robert A. Rosenberg
>
> At 09:30 -0400 on 08/03/2014, Shmuel Metz (Seymour J.) wrote about
> Re: LE APAR PM99349:
>
> >In <[email protected]>, on
> >08/03/2014
> > at 06:52 AM, Shane Ginnane <[email protected]> said:
> >
> >>Security through obfuscation has never worked.
> >>Might appear to for a while,
> >
> >As long as it works long enough to develop a fix and get it installed,
> >it's worth doing.
>
> That assumes that once a problem is spotted that the creation of the fix is
> started and that the fix
> actually gets distributed and installed. Too many times, since the problem
> description is not revealed
> the creation of a fix is not regarded as necessary. IOW: By not saying what
> the problem is (or even
> that there is a problem) there is a tendency to not see a need to actually
> fix it.
Best I can tell, the "SECINT" SOURCEID is available only via the SECINT.ASSIGNS
file, available only through the Security Portal. I've never seen a SECINT PTF
in any RECEIVE ORDER with CONTENT(RECOMMENDED) (but that doesn't mean there
aren't any). Thus, it appears that one is "expected" to subscribe to the
Security Portal and to its notification process to learn when a
security/integrity problem has been identified and fixed.
-jc-
**********************************************************************
Information contained in this e-mail message and in any attachments thereto is
confidential. If you are not the intended recipient, please destroy this
message, delete any copies held on your systems, notify the sender immediately,
and refrain from using or disclosing all or any part of its content to any
other person.
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
