× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. June 2000

Re: Programmer DFU access

  • Subject: Re: Programmer DFU access
  • From: John Earl <johnearl@xxxxxxxxxxxxxxx>
  • Date: Fri, 16 Jun 2000 10:27:53 -0700
  • Organization: The PowerTech Group
 
Albert,

"York, Albert" wrote:

> John Earl wrote:
>
> >I put together something similar once, and discovered a big problem with
> it.  The
> >spool file can always be manipulated/changed/deleted by the person who
> reated it
> >(even if it's in an outq they have *EXCLUDE authority to :(  ).
>
> >Our solution was to have an automatic SNDNETSPLF ship the spool file to
> another
> >system, into an outq that was *PUBLIC *EXCLUDE.  The new spool file ended
> up
> >being owned by  the owner of the SNDNETSPLF job, so it was slightly more
> secure.
>
> You can also attach a data queue to the output queue. Any time a spool file
> is added to the output queue an entry is added to the data queue. You then
> have a program running in the background which processes the spool file,
> adding it to a log file or whatever.

That's what we did.  Nice, but not bullet proof.   The data queue only triggers
when a splf is dropped into the outq in a "ready" status.  A conniving sort 
could
engineer a number of ways to keep the splf from ever getting to "ready" status 
so
that he could delete it before it got sent.

Theoretically of course.

jte


>
>



>
> Albert York
>
> +---
> | This is the Midrange System Mailing List!
> | To submit a new message, send your mail to MIDRANGE-L@midrange.com.
> | To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
> | To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
> | Questions should be directed to the list owner/operator: david@midrange.com
> +---

--
John Earl                               johnearl@400security.com
The PowerTech Group                     206-575-0711
PowerLock Network Security              www.400security.com
--


+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.