On Fri, 7 Jul 2017 08:05:42 -0500 Barbara Nitz <[email protected]> wrote:
:>A colleague of mine just asked me if ISPF statistics in a data set, especially the USERID field, can be manipulated. We used ISPF 3.5 and we were both astonished that I was easily able to fake a userid as the one who last changed a member (testing in my own dataset, of course). :>This immediately raised the question for me if there is any RACF control that would prevent this type of manipulation, especially since the userids in those statistics are widely used as evidence. Does anyone know if there are such RACF controls? A quick search in the ISPF books didn't turn up any hint. As the statistics can be manipulated by STOW/EXCP outside of ISPF, having WRITE authority to the dataset is enough to change it. I have heard that acf2 has a means of altering the DEB of a PDS to prevent access outside of certain member areas, but have not tried it. -- Binyamin Dissen <[email protected]> http://www.dissensoftware.com Director, Dissen Software, Bar & Grill - Israel Should you use the mailblocks package and expect a response from me, you should preauthorize the dissensoftware.com domain. I very rarely bother responding to challenge/response systems, especially those from irresponsible companies. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
