• Subject: Re: Securing QSYS.LIB
  • From: John Earl <johnearl@xxxxxxxxxxxxxxx>
  • Date: Tue, 07 Nov 2000 12:04:08 -0800
  • Organization: The PowerTech Group

Mark,

Mark Walter wrote:

> Hello all,
>
> We just implemented File and Print sharing through Netserver when I
> discovered that by drilling down through the root share, I could change and
> delete objects in QSYS.LIB. We have an application that requires the root
> to be shared. I know there was an authorization list to secure QSYS.LIB for
> use through Client Access. Does that work with Netserver? Or, is there
> another way to secure it?

Yes there is an authorization list (it's called QPWFSERVER), but no it doesn't
secure QSYS.LIB.

It does do an effective job of hiding QSYS.LIB so that NetServer clients don't
see QSYS.LIB, so if that is what you are after then QPWFSERVER will get you what
you need.

You can also write (or buy!) an exit program for the File Server exit point (the
file server exit point is called QIBM_QPWFS_FILE_SERV ).  and you can look it up
in the OS/400 Host Servers manual)

HTH,

jte




--
John Earl                    johnearl@400security.com
The PowerTech Group      --> new number --> 253-872-7788
PowerLock Network Security   www.400security.com
--


+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2019 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].