I was just wondering if there was a capability from within TSM to provide
an alternative to this or maybe a third party TSM product that's all?
thanks!.
--Justin Richard Bleistein
Unix/TSM Systems Administrator (Sungard eSourcing)
Desk: (856) 566 - 3485
Cell: (856) 912 - 0861
Email: [EMAIL PROTECTED]
Thomas Denier
<[EMAIL PROTECTED] To: [EMAIL PROTECTED]
IL.TJU.EDU> cc:
Sent by: "ADSM: Subject: Re: Clear text passwords.
Was: Automating dsmserv
Dist Stor
Manager"
<[EMAIL PROTECTED]
.EDU>
05/27/2003 04:21
PM
Please respond to
"ADSM: Dist Stor
Manager"
> one solution:
>
> We created an admin account (ex. QUERY), that is granted no authority.
> Which means it can do queries, but can't change anything.
> For scripts that just do queries, we use that admin id and don't sweat
> whether it's hackable.
> Now in theory somebody could find out the password and SUBMIT A BIG QUERY
> that ties up your server,
> but really, so what.... not in my list of Worst Things to Worry About.
There is another potential issue with this approach. A user with no
authority can run query or select commands that report client file
names. One can readily imagine scenarios in which this capability
raises serious privacy concerns.
