Re: Moving to QSECURITY 40

[Charles Wilt <charles.wilt@xxxxxxxxx>]

"programs that were created before Version 1 Release 3..."

Is that even possible?  Given CISC to RISC at 3.6 and the one (two?) other
version upgrades that required program recreation...

Doesn't seem possible to me.

Charles

On Wed, Nov 5, 2025 at 1:42 PM Rob Berendt <robertowenberendt@xxxxxxxxx>
wrote:

> I am following the security reference manual at
> https://www.ibm.com/docs/en/ssw_ibm_i_76/pdf/sc415302.pdf
> section "Changing to security level 40"
>
> We already have the audit journal set up.  I added *AUTFAIL and *PGMFAIL
> and will monitor this with:
> SELECT * FROM TABLE(
>   SYSTOOLS.AUDIT_JOURNAL_AF(
>     STARTING_TIMESTAMP => timestamp('2025-11-05-15.00.00')
>   ))
>   -- where VIOLATION_TYPE IN('B', 'C', 'D', 'J', 'R', 'S')
>   ;
>
> Another step talks about "If you have any programs that were created before
> Version 1 Release 3...".  I should be able to find those with this, right?
> select RELEASE_CREATED_ON, PI.*
> from qsys2.program_info PI
> -- where PROGRAM_LIBRARY = 'ROUTINES'
> ORDER BY RELEASE_CREATED_ON
> ;
> So far the earliest is V3R6M0.  Since that is after "Version 1 Release 3" I
> should be ok, right?
>
> What is interesting is finding vendor supplied programs with V4R1M0 and a
> TEXT_DESCRIPTION of "(C) 2024...".  Bet you can't guess it's a vendor we're
> knocking upside the head to get tested for 7.6, eh?  I suppose they could
> be generating on ancient stuff and restoring on newer to test.
> --
> This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
> To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
> To subscribe, unsubscribe, or change list options,
> visit: https://lists.midrange.com/mailman/listinfo/midrange-l
> or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
> Before posting, please take a moment to review the archives
> at https://archive.midrange.com/midrange-l.
>
> Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related
> questions.