JSCBPASS applies to all datasets, not just to VSAM. But see <http://www-01.ibm.com/support/docview.wss?uid=isg1OA48124> for better granularity.
-- Shmuel (Seymour J.) Metz http://mason.gmu.edu/~smetz3 ________________________________________ From: IBM Mainframe Discussion List <[email protected]> on behalf of Porowski, Kenneth <[email protected]> Sent: Thursday, July 26, 2018 9:46 AM To: [email protected] Subject: Re: A curiosity Question Wouldn't that be PASS/NOPASS in SCHED00 This email message and any accompanying materials may contain proprietary, privileged and confidential information of CIT Group Inc. or its subsidiaries or affiliates (collectively, “CIT”), and are intended solely for the recipient(s) named above. If you are not the intended recipient of this communication, any use, disclosure, printing, copying or distribution, or reliance on the contents, of this communication is strictly prohibited. CIT disclaims any liability for the review, retransmission, dissemination or other use of, or the taking of any action in reliance upon, this communication by persons other than the intended recipient(s). If you have received this communication in error, please reply to the sender advising of the error in transmission, and immediately delete and destroy the communication and any accompanying materials. To the extent permitted by applicable law, CIT and others may inspect, review, monitor, analyze, copy, record and retain any communications sent from or received at this email address. -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of Walt Farrell Sent: Thursday, July 26, 2018 8:50 AM To: [email protected] Subject: Re: [IBM-MAIN] A curiosity Question On Tue, 24 Jul 2018 15:08:51 +0000, Seymour J Metz <[email protected]> wrote: >Neither APF authorization nor supervisor state suspend normal SAF processing >for, e.g., OPEN. If you know of a privileged application >that bypasses >normal resource controls and does not require SAF authorization before doing >so, then it's APAR time. I believe there is one exception to that, unless the behavior has been changed in the past few years: as I recall, OPEN for a VSAM file will bypass security checking if the issuer of OPEN is running in supervisor state. I think it's documented (briefly) deep in some manual, but I forget which one. -- Walt ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
