On Monday, 11/05/2007 at 12:14 EST, Alan Ackerman <[EMAIL PROTECTED]> wrote: > ftp > open 10.1.10.2 > username: PHONEY123 > password: PHONEY123 > cd PHONEY123.CEA1 > get DATA.FILE > > I recognize the IP address as a VM system, so what this person has just > done is send me the userid and password of a VM userid. That, of course, > is against our information security rules. Before I complain though, I > wish I could offer an alternative. : > What do other shops do to make large VM files available to a limited > audience without sending out a password? (FTP or not.)
Easy. When using RACF, you simply ADDUSER another id, but don't create a virtual machine. It can be used for authentication and access control, but you cannot LOGON with it. Alan Altmark z/VM Development IBM Endicott
