On 05/18/2016 05:16 AM, Elardus Engelbrecht wrote:
> Robert S. Hansel (RSH) wrote:
>
>> OPERATIONS users actually can grant privileges because they can create
>> dataset profiles for any group. And if they own a profile they create, they
>> can permit access to it.
> RACF by default will allow th
: Privileged Users (was: EXTERNAL: Re: [EXTERNAL] Re:
smp/e sha-2 support?)
Hi Skip,
OPERATIONS users actually can grant privileges because they can create dataset
profiles for any group. And if they own a profile they create, they can permit
access to it.
In z/OS 2.2, you will be able to
Robert S. Hansel (RSH) wrote:
>OPERATIONS users actually can grant privileges because they can create dataset
>profiles for any group. And if they own a profile they create, they can permit
>access to it.
RACF by default will allow that OPERATIONS stunt. IRREVX01 can be used to block
those acr
016 16:37:50 +
From:Jesse 1 Robinson
Subject: Re: EXTERNAL: Re: [EXTERNAL] Re: smp/e sha-2 support?
An interesting take on ADDSD. We produce a periodic report here on userids with
'elevated access', which includes SPECIAL, OPERATIONS, and AUDITOR (the benign
type). OPERATIONS canno
On 16 May 2016 at 15:47, Jerry Whitteridge
wrote:
> I'd reply to the Auditor "Please define Admin access as there is no one
> privilege that grants all access"
But there are several -- perhaps many -- privileges that grant access
to grant all access. For instance, anyone with READ access to
BPX
ion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf
Of John McKown
Sent: Tuesday, May 17, 2016 8:57 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: (External):Re: EXTERNAL: Re: [EXTERNAL] Re: smp/e sha-2 support?
On Tue, May 17, 2016 at 9:41 AM, Mike Schwab
wrote:
> Any ID that can grant privileges to
On Tue, May 17, 2016 at 9:41 AM, Mike Schwab
wrote:
> Any ID that can grant privileges to another ID.
>
By the above definition, _every_ id in RACF which has TSO capability is an
administrator. How? Suppose that I am BUBBA. I log into TSO. I issue the
commands:
ADDSD MY.DATASET UACC(NONE)
PERM
EDU] On
> Behalf Of Lester, Bob
> Sent: Monday, May 16, 2016 12:40 PM
> To: IBM-MAIN@LISTSERV.UA.EDU
> Subject: Re: EXTERNAL: Re: [EXTERNAL] Re: smp/e sha-2 support?
>
> Hi All,
>
> What would you make of this request: "Show me all the users that have
>
On Mon, 16 May 2016 19:47:43 +, Jerry Whitteridge wrote:
>I'd reply to the Auditor "Please define Admin access as there is no one
>privilege that grants all access"
>
"If there's more than one, then, all of them!"
(The Wookie wins.)
-- gil
-
#x27;t going fast enough.
-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf
Of Lester, Bob
Sent: Monday, May 16, 2016 12:40 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: EXTERNAL: Re: [EXTERNAL] Re: smp/e sha-2 support?
Hi All,
What would
2016 1:38 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: EXTERNAL: Re: [EXTERNAL] Re: smp/e sha-2 support? [ EXTERNAL ]
And anyone that thinks Auditors don't set policy and rules hasn't worked in the
commercial environment for a while. Let alone the fact of having to train PCI
Auditor
m: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf
Of Dyck, Lionel B. (TRA)
Sent: Monday, May 16, 2016 12:26 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: EXTERNAL: Re: [EXTERNAL] Re: smp/e sha-2 support?
What's going to happen is that IBM will not support SHA-2 (or -3) a
12 matches
Mail list logo