All, I have a COBOL written STC that is single thread socket server. It receives messages that are RACF commands and then calls a module which calls r_ admin. My question is this, when I initially started working with this code , it was AC (1) , I didn't think anything about it. But we are in the process of building a CI process the the STC main program was blinded as AC(0). The client made the RACF call failed Saf=8, RACF=16, RACF-reason-code=8, 'insufficient authority'. The calling module was AC(0) also , at this point I knew what it was re-assembled the called program to be AC(1) and everything in 'Dodge' was good, it worked.
Now the question, I want to run a STC as AC(0) and have the caller as described above. I am concerned about the security hole that is open, the call last a few ms if that. The second question is about how it works. Since I am dealing with COBOL is the APF Arena, does it behave the same ? Thanks in advance, Scott -- Scott Ford IDMWORKS z/OS Development ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
