On Monday, 01/31/2022 at 08:20 GMT, "Rob van der Heij" <[email protected]> wrote: > And since you may not be able to do much repairing on a R/O disk of a dead > Linux guest, why not make it MRD so you can get a R/W link when you have > to, but not when you shouldn't.
I recommend against that unless you're actively repairing the disk. User A should not have access to User B's data unless there is a reason (e.g. open repair ticket), as it creates an unnecessary and unauditable (by User B) data access path to User B's data. As usual, you have to balance convenience against security. Granting access is a minor effort for the sysprog, not justifying "just in case" access rights. Alan Altmark Senior Managing z/VM and Linux Consultant IBM Systems Lab Services IBM Z Delivery Practice ibm.com/systems/services/labservices office: 607.429.3323 mobile; 607.321.7556 [email protected] IBM Endicott ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO LINUX-390 or visit http://www2.marist.edu/htbin/wlvindex?LINUX-390
