Juan Mautalen wrote: > ... i find that support people do not bother very much about security issues. > ... they feel that security is not their business.
>In concrete, if i want to change VTAMLST access from UACC(READ) to UACC(NONE), >that is not something they are interested in at all. It is MY problem. And, of >course, if something crashes after the change, i will be the culprit. >Moreover, if i dont make the change and someone extracts some valuable >information from VTAMLST for bad purposes, i will also be the culprit (because >of allowing anybody to read it). You get the idea... I get your idea very well. I have more than enough scars from it. :-) I can give you some advice how to handle this: Ask them, as OWNER of that resource, would you like some outside interference on your OWN resources? Hmmmm??? If they don't care, it is THEIR problem, because you have asked them and they do not want to be bothered by security. In fact, when I create profiles, I ask the OWNER of the resources for guidelines. No guidance means one thing - UACC = NONE. On this thread: VTAMLST + VTAMLIB and TCPIP resources belongs to Network only and only they and related STCs may have [whatever] access to it. Of course you may not survive this due to excessive resistance... :-) Groete / Greetings Elardus Engelbrecht ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
