|
Since the log file is public *EXCLUDE and owned by QSECOFR, wouldn't the user need *ALLOBJ authority to accomplish this anyway? If they can turn off the update/delete flags then they can probably delete the file entirely. I have not journaled the file. Loyd -----Original Message----- From: rob@xxxxxxxxx [mailto:rob@xxxxxxxxx] Sent: Friday, April 16, 2004 08:24 To: Midrange Systems Technical Discussion Subject: Re: FTP server side logging? Sounds great. But for auditing purposes, couldn't someone do a CHGPF and turn off update(*no) and delete(*no)? If you journal that file, those are next to impossible to change, and if you do delete a journal in the middle, it'll stick out big time. (Not that I do this, but if your auditors are real sticklers it might come to that.) Rob Berendt -- Group Dekko Services, LLC Dept 01.073 PO Box 2000 Dock 108 6928N 400E Kendallville, IN 46755 http://www.dekko.com _______________________________________________ This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options, visit: http://lists.midrange.com/mailman/listinfo/midrange-l or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at http://archive.midrange.com/midrange-l.
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
