Re: SAVSECDTA time varying widely

<snip>
it inherits other attributes from the containing directory, including the
default authorizations for "user, group, world" etc
</snip>
Does it though? I don't think so. I think it varies by the command used
to create the stream file.

CHGAUT OBJ('/home/rob/trash') USER(CRAIGS) DTAAUT(*RWX) OBJAUT(*ALL)
EDTF STMF('/home/rob/trash/test3.txt')
DSPAUT OBJ('/home/rob/trash/test3.txt')
CRAIGS is not listed on test3.txt

Rob Berendt
--
IBM Certified System Administrator - IBM i 6.1
Group Dekko
Dept 1600
Mail to: 2505 Dekko Drive
Garrett, IN 46738
Ship to: Dock 108
6928N 400E
Kendallville, IN 46755
http://www.dekko.com


-----Original Message-----
From: MIDRANGE-L <midrange-l-bounces@xxxxxxxxxxxxxxxxxx> On Behalf Of
Mark Waterbury
Sent: Tuesday, April 7, 2020 10:33 PM
To: Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxxxxxxxx>
Subject: Re: SAVSECDTA time varying widely

CAUTION: This email originated from outside of the organization. Do not
click links or open attachments unless you recognize the sender and know
the content is safe.


Rob,

Someone should open an RFE for this.

When you create a streamfile in the IFS, it inherits other attributes from
the containing directory, including the default authorizations for "user,
group, world" etc. -- so why should it not also inherit the AUTL if one is
assigned to the containing directory?

Mark S .Waterbury




On Tuesday, April 7, 2020, 1:50:29 PM EDT, Rob Berendt <rob@xxxxxxxxx>
wrote:





Apparently it is on the command creating the stream file. It is not an
attribute of the parent directory itself. For example CPYTOIMPF has a
parameter called STMFAUT(*INDIR). EDTF does not. Many of the other
commands may not.

There is nothing like the following:
CRTLIB LIB(MYLIB) CRTAUT(MYAUTL)

How are a bulk of your objects created? CPYTOIMPF?
I didn't see STMFAUT(*INDIR) on the following either:
OVRPRTF FILE(MYSPLF) DEVTYPE(*AFPDS) TOSTMF('/home/rob/trash') WSCST(*PDF)

Rob Berendt
--
IBM Certified System Administrator - IBM i 6.1
Group Dekko
Dept 1600
Mail to: 2505 Dekko Drive
Garrett, IN 46738
Ship to: Dock 108
6928N 400E
Kendallville, IN 46755
http://www.dekko.com


-----Original Message-----
From: MIDRANGE-L <midrange-l-bounces@xxxxxxxxxxxxxxxxxx> On Behalf Of Joe
Pluta
Sent: Tuesday, April 7, 2020 1:23 PM
To: midrange-l@xxxxxxxxxxxxxxxxxx
Subject: Re: SAVSECDTA time varying widely

CAUTION: This email originated from outside of the organization. Do not
click links or open attachments unless you recognize the sender and know
the content is safe.


Although, according to our scenario, you're saying it does NOT happen
that way.

So now I have to re-review https://www.ibm.com/support/pages/node/644647.

<<<sigh>>>

On 4/7/2020 12:19 PM, Joe Pluta wrote:

And that, I believe, happens based on the authority of the parent folder.

I think.

On 4/7/2020 12:16 PM, Rob Berendt wrote:

Run it once to assign the authorization list
CHGAUT OBJ('/home/rob/trash') AUTL(MYAUTL) SUBTREE(*ALL)

Run it again to set *PUBLIC to whatever you put in the authorization
list
CHGAUT OBJ('/home/rob/trash') USER(*PUBLIC) DTAAUT(*AUTL)
OBJAUT(*NONE) SUBTREE(*ALL)

Run it again, for each user, to remove them except for what they have
in the authorization list
CHGAUT OBJ('/home/rob/trash') USER(QNOTES) DTAAUT(*NONE)
OBJAUT(*NONE) SUBTREE(*ALL)

Verify
DSPAUT OBJ('/home/rob/trash')

Now, here's the catch. How do you ensure that new objects are
assigned that authorization list? For example, if I do
EDTF STMF('/home/rob/trash/test.txt')
This new file will not have that authorization list assigned to it.

Rob Berendt

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
at https://archive.midrange.com/midrange-l.

Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related
questions.

Help support midrange.com by shopping at amazon.com with our affiliate
link: https://amazon.midrange.com

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
at https://archive.midrange.com/midrange-l.

Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related
questions.

Help support midrange.com by shopping at amazon.com with our affiliate
link: https://amazon.midrange.com
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
at https://archive.midrange.com/midrange-l.

Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related
questions.

Help support midrange.com by shopping at amazon.com with our affiliate
link: https://amazon.midrange.com
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
at https://archive.midrange.com/midrange-l.

Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related
questions.

Help support midrange.com by shopping at amazon.com with our affiliate
link: https://amazon.midrange.com