On Wed, 12 Jun 2019 11:13:47 -0400, Phil Smith III wrote:
>John McKown wrote:
>
Which article are you replying to? I can't find it. IIRC, I even commented on
it. URL?
>>True. I really like the fact that when I log into TSO, it tells me the last
>>time my ID was used for some purpose. I wish that the log in to z/OS UNIX,
>>via ssh, did the same thing.
>
I believe Walt Farrell(?) commented, years ago, that that function is buried
inextricably in TSO logon processing.
Conway's Law. Another case where IBM designers appear to flee from
reusable code. Some systems even have a user command to display
that information electively.
>>Which makes me wonder if some sort of daily (weekly?) report should be done
>>for each RACF ID associated with a "person" which reports all the "logon"
>>and perhaps "logoff" activity and then email it to them
>
>Nice idea...but most folks would just delete it unread after the first week.
>
>As for the article: NIST said the same thing last year, but now that Microsoft
>is repeating it, it's finally getting some press. That's kind of sad and scary.
>
Cite? URLs? I find:
https://pages.nist.gov/800-63-FAQ/#q-b5
On password expiration
https://xkcd.com/936/
-- gil
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
