Andrew,
You may be right that IBM are trying to state something stronger. My point is
that safety is a minimum requirement for an IBM recommendation. I have found
several cases where IBM has specified a higher level of access than is
necessary. For example, IBM states that FTP needs UID(0) to
Long before the CBT tape. Proprietary software was the innovation. In the 1950s
through the 1970s shops routinely exchanged software, although the shift away
from, e.g., cards, tape, has certainly made things easier. Also, these days
there are formal mechanisms instead of the informal and ad
IGWDES?
--
Shmuel (Seymour J.) Metz
http://mason.gmu.edu/~smetz3
From: IBM Mainframe Discussion List [IBM-MAIN@LISTSERV.UA.EDU] on behalf of
Joseph Reichman [reichman...@gmail.com]
Sent: Sunday, August 20, 2023 4:25 PM
To: IBM-MAIN@LISTSERV.UA.EDU
SMDE_NAME_OFF is the offset of the name.
SMDE_PMAR_OFF is the offset of the PMAR.
SMDE_PNAME_OFF is the offset of the primary name if this is a program object
alias.
The data returned by DESERV is not mapped by IHAPDS.
The mapping of the DESERV output is clearly documented.
Peter Relson
z/OS
> On 21 Aug 2023, at 1:35 pm, kekronbekron
> <02dee3fcae33-dmarc-requ...@listserv.ua.edu> wrote:
>
>> I intend to leverage the z/OS Open Tools ports as they spare me the effort
>> of continuous maintenance.
>
> That sounds like it's going to lead to RS offering supported option of stuff,
Ah ok, I misunderstood then.
When you said it'll spare you the effort of continuous maintenance, I thought
you meant further work/whatever will be based off of zopen stuff.
Of course, RS can't offer support for zopen content directly.
Well... giving back as in more than star-ing a repo. Keeping
To add to this discussion, it is my understanding that when IBM tests new
version of z/OS, they do so with the tasks named in the documentation with
TRUSTED authority. Since they have TRUSTED, IBM does not determine or document
what access authorization the tasks require. If you choose to run
Good point.
Just to clarify:
1. I have no problem with giving XCFAS the TRUSTED attribute. I have
several STARTED class profiles with the attribute, however everytime I
checked IBM doco before that. Just to be auditor-proof. ;-)
So, I asked just to be sure that I can answer "yes, it is
Current Word* can** still open RTF and Word files going back to "Word 2 and
earlier", but it is controlled by the File Block Settings: File > Options >
Trust Center > Trust Center Settings > File Block Settings. A checkmark by file
type means that it is blocked, for either Open, Save or Both.
Classification: Confidential
The TRUSTED attribute usually comes along with an ID that cannot be "logged on
to", so, it is not available for manipulation.
By this time, auditors should be fully conversant in te trusted attribute.
I don't see an issue here.
My USD 0.02 worth.
-Original
> Not worth the risk, in my view (our security group disagreed!)
In the Army they taught me that unauthorized denial of service is also a
security breach.
--
Shmuel (Seymour J.) Metz
http://mason.gmu.edu/~smetz3
From: IBM Mainframe Discussion List
We want to hear from you!
As we start to modernize our legacy defect management systems, we would
appreciate customer feedback which you can provide via the “Modernization of
Defect Management” SURVEY until 5pm ET on August 23:
https://lnkd.in/eCi42dAM
This should only take a couple of
On Mon, 21 Aug 2023 at 12:44, ITschak Mugzach wrote:
> user TSO SEND command '+IKJX0001I BLA BLA',cn(00) (or the actual name of
> the console at your shop. It is also a tricky way to fool automation
> products...
Those automation products should be set up to check for the leading +
sign. (In
Tony,
I are right about the extra plus sign... I used this trick in the past to
attack the z.
If you want to remove the plus sign, you can write a system rexx exec to
use axrwto.
ITschak
בתאריך יום ב׳, 21 באוג׳ 2023 ב-21:30 מאת Tony Harminc :
> On Mon, 21 Aug 2023 at 12:44, ITschak Mugzach
Hi Mark,
Another possibility ...
Run DFSMSdss (ADRDSSU)and use the WTO/WTOR Command.
Regards,.
David
On 2023-08-21 12:40, Mark Regan wrote:
Is there a way to generate WTO messages via a batch job to check message
suppression? At my last site, where we had NetView, we used a CLIST (or was
it
Bob Bridges wrote on 8/16/2023 8:23 AM:
Too many years ago; I don't remember. And it isn't as if "unintuitive" is a
fatal error in editors or any other application; TECO (anyone ever use
that?) is a powerful editor - it was on the PDP platform as I recall - with
early automation features that I
List,
Has anyone had experience (good or bad) with migrating their mainframe Db2
workload from on-prem to the cloud?
--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with
Andrew Rowley wrote on 8/20/2023 4:40 PM:
On 21/08/2023 9:28 am, Lennie Dymoke-Bradshaw wrote:
Secondly, when IBM states that a task should be given the attribute
of Trusted, then I take it to mean that IBM is saying that the task
can be trusted that this attribute cannot be the source of an
At my new site, we are looking at suppressing the IST663I Multi-line
message (which includes IST664I, IST889I, and IST314I) to the console. Is
this double? We are not using NetView on this site (alas), and we still
want NET to keep the messages in its joblog.
Regards,
Mark Regan, K8MTR General,
Is there a way to generate WTO messages via a batch job to check message
suppression? At my last site, where we had NetView, we used a CLIST (or was
it REXX), to do this.
Regards,
Mark Regan, K8MTR General, EN80tg
CTO1 USNR-Retired (1969-1991)
Nationwide Insurance, Retired, 1986-2017
z/OS
Mark,
user TSO SEND command '+IKJX0001I BLA BLA',cn(00) (or the actual name of
the console at your shop. It is also a tricky way to fool automation
products...
ITschak
ITschak Mugzach
*|** IronSphere Platform* *|* *Information Security Continuous Monitoring
for z/OS, x/Linux & IBM I **| z/VM
>> we are looking at suppressing the IST663I Multi-line message (which includes
>> IST664I, IST889I, and IST314I) to the console. Is this double?
https://groups.google.com/g/bit.listserv.ibm-main/c/Byj7uv0h3zY
Thanks,
Kolusu
Even after his passing, Chris Mason is still helping the group.
On Mon, Aug 21, 2023 at 11:58 AM Sri h Kolusu wrote:
> >> we are looking at suppressing the IST663I Multi-line message (which
> includes IST664I, IST889I, and IST314I) to the console. Is this double?
>
>
I remember using:
0lt$$
(the $$ is how escape-escape echoed.)
More times than I can count... but then again, it's what you had to do when
programming on a teletype.
The ed and vi commands are actually based upon TECO. As far as I know vi is
just a visual decedent of TECO.
Hayim Sokolsky
> TRUSTED is a way for the systems programmer to make it harder for
> an over-zealous security officer to break the system.
Mit der Dummheit kämpfen Götter selbst vergebens
But that applies equal well to a security officer who is too lax. It is
essential that he be trained to understand the
I like using a system rexx exec for this, it can easily produce MLWTOs for
testing automation:
/* REXX TEST - Rexx for issuing test messages for testing */
LOL, yeah, I guess that's true. But I found it pretty powerful at the time,
before full-screen editors were available to me.
Actually I still think it was powerful. There are reasons to like WordPad, for
instance (which I use extensively for low-level documentation), but when I want
to do
I believe that the OP only wants to suppress the message from the console, not
the syslog, so an MPF exit is the best choice for this. You can write one, or
use automation products like netview (or our Syzygy Automation suite
(www.SyzygyInc.com) which is much less expensive), and you can elect
One of the ways we test our Syzygy automation products is to simply type the
message on the console as if it was a regular command or the entire message we
want to test (we also have a process to do this internally from our product,
but I'm assuming that the OP isn't a customer so doesn't have
Define move to the cloud ? We moved all our z/OS systems to the zCloud
environment which obviously included the databases. Or are you asking about
moving z/OS DB2 to UDB DB2 ?
J
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
Lance D. Jackson
Sent: Monday, August
Heh, heh, a decedent, really? So vi really is dead?
---
Bob Bridges, robhbrid...@gmail.com, cell 336 382-7313
/* Whatever you were looking for doesn't currently exist at this address.
Unless you were looking for this error page, in which case: Congrats! You
totally found it. -404 message */
I have more 2 Federal system. One was literally on its last leg before the
hardware failed
Sent from my iPhone
No one said I could type with one thumb
> On Aug 21, 2023, at 18:04, Jerry Whitteridge
> wrote:
>
> Define move to the cloud ? We moved all our z/OS systems to the zCloud
>
Love the gsktrace. Very educational.
Rob
On Tue, Aug 15, 2023, 14:14 Phil Smith III wrote:
> Thanks to an off-list suggestion from Charles that I run a gsktrace, I've
> now proven to my (and his) satisfaction that it does the label lookup and
> then.never actually uses it after that. So at
33 matches
Mail list logo
