Skip,
A long time ago I read :-
Building a Self-Documenting MVS/ESA System
by Mark S. Hahn
Reprinted with permission. ©1992 Candle Corp.
Can't see to find it via Google now, but Dave Alcock has refenrce to it:-
http://planetmvs.com/mvstips/#SELFDOC
On Wed, 29 May 2019 23:36:59 +, Jesse 1
Before we moved to parallel sysplex in the 90s, we had only a few real-hardware
CTC devices with ragamuffin unit addresses assigned haphazardly over the years.
With sysplex, we were advised by our top gun CE that shops with a greatly
enlarged array of EMIF CTCs were losing control of their confi
Well, I'll be hornswoggled. With a little digging I found in
https://www.ibm.com/support/knowledgecenter/en/SSLTBW_2.1.0/com.ibm.zos.v2r1.ieae200/ieae200314.htm
that the parm in IEASYSxx is MSTRJCL=(xx[,L]) along with the advice to 'use...L
only for debugging purposes'. We don't seem to hav
Hi Skip,
This is a SYSLOG excerpt.
IEE252I MEMBER MSTJCL00 FOUND IN ADCD.Z23A.PARMLIB
.
.
.
IEFJ200I MASTER SCHEDULER JCL FOR THIS IPL TAKEN FROM MEMBER MSTJCL00 OF
PARMLIB
IEF196I 1 //MSTJCL00 JOB MSGLEVEL=(1,1),TIME=1440
IEF196I 2 // EXEC PGM=IEEMB860,DPRTY=(15,15)
IEF1
The advertised virtue of RSU is that it represents a well-defined bundle of
fixes that have been tested together in 'many' shops. The idea of tacking on an
RSU label to some other fix after the bundle has shipped would seem to violate
the definition and compromise its value. I think we agree tha
For a reeealy lonng time MVS has supported member MSTJCLxx in
PARMLIB for master JCL. As for finding the content of MSTJCLxx at NIP for the
current IPL, I'm at a loss. Does not seem to be captured in operlog.
.
.
J.O.Skip Robinson
Southern California Edison Company
Electric Dragon T
Hello listers,
I'm apparently having a case of brain-drain. Is there an easy way to display
the currently used master JCL? I know I can look at LINKLIB and PARMLIB and
see what's there, but is there a way of displaying what's actually running? I
thought at one point in time I could see it in
I'm not sure, but I suspect that a job submitted via FTP with an invalid userid
or password would just disappear. If there is no userid then it would run under
the userid of the server, so that should not have access to anything sensitive.
It's not rocket science, but you do have to be careful t
I don't have enough data to estimate reliable percentages, but I have been at
two shops where there were user SVCs for getting into key 0, without adequate
authorization checking, and I was not permitted to remove them. In one case I
was ordered to not point them out to an auditor. But I see tha
> A single TRAP DOOR code vulnerability pierces the veil of integrity and can
> be used
> to compromise the mainframe. Is this a platform weakness?
An application with a trap door is an application vulnerability. If there is a
trap door in z/OS itself then that's a platform vulnerability. I'd b
In securing Mainframe:
One thing I've noticed over the years is how a Company will "hide" their
Mainframe hardware.
The Hardware for me now is in a unmarked Building that looks like a bunker (I'm
told). Pretty bad that the location is in my town, however the address is NOT
circulated. The fi
My sales favorite was knowing key functionality is vaporware, talking up
everything the software would do some day. Then being horrified when you
realize the 'decision makers' are eating it up. None of them ends up in hell
when the product doesn't work and the functionality delivery date keeps
That worked. Thanks
On 5/29/19, 1:53 PMEDT, "IBM Mainframe Discussion List on behalf of John
McKown"
wrote:
> ATTENTION: This email has originated from outside of the organization. Do
> not open attachments or click on links unless you recognize the sender and
> know the content is
On Wed, May 29, 2019 at 12:50 PM Nai, Dean wrote:
> Hi,
>
>Running a DR test. Trying to restore an SMS managed dataset on a floor
> system that isn't SMS managed. Getting message ADR709E because it's looking
> for a storage class that doesn't exist on the floor system. Any parameters
> needed
RESTORE
NSC NMC BPYASSACS(**)
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
Nai, Dean
Sent: Wednesday, May 29, 2019 12:50 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: ADRDSSU
Hi,
Running a DR test. Trying to restore an SMS managed dataset on a floor
On the RESTORE you can add NMC and NSC - no management class and no storage
class.
Hope that helps (no guarantee as I haven't tried it).
Lionel B. Dyck
Senior Software Engineer
21st Century Software
From the Leaders in Data Stewardship™
THIS E-MAIL
Hi,
Running a DR test. Trying to restore an SMS managed dataset on a floor
system that isn't SMS managed. Getting message ADR709E because it's looking for
a storage class that doesn't exist on the floor system. Any parameters needed?
Any thoughts would be appreciated.
Dean Nai
Thank you, that was my point about non-CTC links. When I started here in the
90s, BSC links were still in use. First for NJE to VM/XA because our
implementation did not include VTAM, and for some JES2 connections because of a
perception that BSC was faster than SNA. A little testing dispelled th
I'm sure there are lots of ways to do this. I did it in C, not C++, but I
think the following would still work:
('nargs' below can't be > 8 and I obfuscated a bit, so no guarantees...)
void callhli(int hli, long nargs, ...)
{
va_list ap;
int *args;
int i, j;
args = __malloc31(36);
v
I asked but never got a response. (We're running in IBM zCloud so I can't just
stand in front of someone's desk.)
From: IBM Mainframe Discussion List on behalf of Tim
Hare
Sent: Tuesday, May 28, 2019 9:27 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: FTPLOGGING
I wondered if the keyword update would affect intrinsic functions. Thanks
again for the info!
From: IBM Mainframe Discussion List on behalf of
Timothy Sipples
Sent: Tuesday, May 28, 2019 8:45 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: ISPF and newer COBOL ke
31-bit pointers can be declared in C using this syntax:
char * __ptr32 ptr1;
Not sure if C++ will allow that, but if it does you can set your pointers up
that way and pass them as 4-byte values instead of 8-byte values. You can
declare pointer arguments to your assembler routine in the same wa
In response to "Mistakes, lack of time, lack of control, lack of skills.
Not a platform weakness." comment: The mainframe platform, z/OS, and
ESM's all rely on integrity to function. A single TRAP DOOR code
vulnerability pierces the veil of integrity and can be used to
compromise the mainframe.
When I am confused by this sort of thing, I ask the compiler to show me the
generated assembler code that it is using. Perhaps C++ is inserting some
other data in the parameter list. Also, is the HLASM routine defined with a
prototype with an extern "C" ? Something like:
extern "C" type0 myassem(i
On Wed, May 29, 2019 at 8:38 AM Billy Ashton wrote:
> John, thanks for all your help - this has increased my knowledge a lot
> about BPX... One last question that I could not find in the manuals or in
> Google...
>
> Part of this process is to download a file from a server. This file is
> tersed,
I have an assembler routine that gets called by 64-bit C++. The assembler
routine uses CELQPRLG and CELQEPLG and calls DSNALI. The C++ function prototype
has a variable number of arguments, the first being the number of parameters
that follow in the argument list. The C++ program passes the coun
Radoslaw,
* I find your posts informative and helpful.
* I think your English is very understandable
* I respect your expertise
My initial post was an attempt to get a stalled discussion moving in a
more positive direction. I don't normally post but I felt that mainframe
vulnerability discu
John, thanks for all your help - this has increased my knowledge a lot
about BPX... One last question that I could not find in the manuals or in
Google...
Part of this process is to download a file from a server. This file is
tersed, though, and I was not able to find a way to run AMATERSE from th
well, here's my embarrassed face :(
I was led to believe qradar was a tool to review security issues also, as you
can tell I don't know the product well. I didn't want to dig into all the,
already mentioned security issues with APF, RACF SPECIAL, UID 0,etc, but I know
most places I worked for
Carmen, t think you are mixing event audit (siem product like qradar) with
status which was the subject of this thread.
Siem is good, but my experience create lot of false positive alerts.
ITschak
בתאריך יום ד׳, 29 במאי 2019, 15:54, מאת Carmen Vitullo :
> That's one response I can agree with
On 5/29/2019 3:57 AM, Styles, Andy , ITS zPlatform Services wrote:
Did you really get more PTFs assigned RSU1903 the second time? Or did you
simply get
more PTFs? Let me explain:
I believe we received new PTFs - with RSU1903 being assigned to them at the
same time. That's the behaviour I'm
That's one response I can agree with !
I didn't want to drag myself into this, I also have been working for
outsourcers, who's customers were very large banks, insurance companies, worked
for a very large defense contractor, state Government, and now back in one of
the largest health care ins
Where is the list moderator when we need him/her. Some people here
completely lost their manners.
ITschak
בתאריך יום ד׳, 29 במאי 2019, 14:19, מאת Bill Johnson <
0047540adefe-dmarc-requ...@listserv.ua.edu>:
> Nah, I’ll go back to lurking. I forgot many of you already know everything.
>
>
> S
Nah, I’ll go back to lurking. I forgot many of you already know everything.
Sent from Yahoo Mail for iPhone
On Wednesday, May 29, 2019, 6:02 AM, Richards, Robert B.
<01c91f408b9e-dmarc-requ...@listserv.ua.edu> wrote:
Questioning the integrity of a man with his credentials and background i
Radoslaw, you took my reply entirely wrong. I'll try to restate it better.
Over many years, banks have been very susceptible to fraud, break-ins, hackers,
insider shananigans, corrupt employees, etc. But they have learned. Experience
taught them that and it is a tough lesson to learn. I worked,
NJE over BSC was obsolete 20 years ago.
However IMHO it's easier to use NJE over TCPIP than over CTC/VTAM. NJE
over TCPIP is also not new, probably 10+ years.
--
Radoslaw Skorupka
Lodz, Poland
W dniu 2019-05-29 o 03:30, Tony Thigpen pisze:
I am talking about JES2 controlled CTCs for NJE,
I didn't offer anything. Read the thread from begining. I was the first to
confirm the PEOPLE is the main issue.
Yes, I don't think clients buy mainframes because they are more secure, i
don't know if there are new clients for mainframes in the last few years.
Most, if not all, mainframe clients
W dniu 2019-05-29 o 12:09, Richards, Robert B. pisze:
I'm still sure thank banks are less susceptible to break in than regular house
Yeah, experience is a tough task master, isn't it?
Who is task master?
Do you try to insult me?
Just because you disagree with my opinions?
--
Radoslaw Skorupka
That's classical FUD.
Frightening people.
"if an exploit", "if job reads you RACF db", "unintended consequences".
What exactly hacking scenario can provide RACF db to the hacker?
Yes, I saw APF libraries with UACC(ALTER), UID(0) as standard TSO user
attribute, even UPDATE to RACF db. But it's pro
Radoslav,
I just tried to demonstrate the fact that ibm sometime don't confirm the
risk before it fix it and many of the industry ayyack methodd are also
posible with new technologies broght to mainframe. While i accept this
strategy from client security point of view, you can't relay on that they
> I'm still sure thank banks are less susceptible to break in than regular house
Yeah, experience is a tough task master, isn't it?
Bob
-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf
Of R.S.
Sent: Wednesday, May 29, 2019 6:04 AM
To: I
W dniu 2019-05-28 o 19:01, ITschak Mugzach pisze:
Radoslav,
"Claiming that z/OS has flaws as other systems is the same as claiming bank
is vulnerable to burglars as houses" I am sure you've heard of mettdown an
Spectre. IBM CPU have same issues as any other cpu in market -(
ITschak,
I'm sure th
Questioning the integrity of a man with his credentials and background in
mainframe security for over 30+ years? Who the hell are you that I should even
listen to one more word from you? Better to be a fool and know it than open
your mouth and remove all shadow of doubt.
Bill, if you can overco
Ladies and Gentlemen,
A gentle reminder that the next meeting of the GSE UK Security Working Group,
will take place on Thursday 6th June 2019 at the new offices of RSM Partners in
Bromsgrove, UK (a 40 minute drive from Birmingham Airport). If you cannot
attend in person, you are welcome to joi
Classification: Public
Hi Kurt,
> Did you really get more PTFs assigned RSU1903 the second time? Or did you
> simply get
> more PTFs? Let me explain:
I believe we received new PTFs - with RSU1903 being assigned to them at the
same time. That's the behaviour I'm querying - and I think you agr
45 matches
Mail list logo