לֹ֥א יְשַׁקֵּ֖ר
From: IBM Mainframe Discussion List on behalf of Tom
Longfellow <03e29b607131-dmarc-requ...@listserv.ua.edu>
Sent: Wednesday, December 11, 2024 8:47 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
External M
t; Classification: Confidential
>
> As I said yesterday, and auditor that can spell S-M-P-E is a rarity.
>
> -Original Message-
> From: IBM Mainframe Discussion List On Behalf Of
> Joel Ewing
> Sent: Tuesday, December 10, 2024 6:17 PM
> To: IBM-MAIN@LISTSERV.UA.EDU
>
Classification: Confidential
As I said yesterday, and auditor that can spell S-M-P-E is a rarity.
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
Joel Ewing
Sent: Tuesday, December 10, 2024 6:17 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
Your word and SMPLOG should back your claims. But even that will not work for
the auditor that does not trust anyone or anything (which is what they THINK is
their job). Many unfounded requests are based upon misunderstandings and
mistrust. I agree with the general response I have seen her
of those known errors to give some assurance
> > the risk is minimal.
> >
> > JC Ewing
> >
> > > On 12/10/24 11:20 AM, Phil Smith III wrote:
> > > Can we first stop and be impressed that an auditor understands enough to
> > > ask about this?
> > >
ith III wrote:
>> Can we first stop and be impressed that an auditor understands enough to ask
>> about this?
>>
>> -----Original Message-
>> From: IBM Mainframe Discussion List On Behalf Of
>> ITschak Mugzach
>> Sent: Tuesday, December 10, 20
III wrote:
Can we first stop and be impressed that an auditor understands enough to ask
about this?
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
ITschak Mugzach
Sent: Tuesday, December 10, 2024 12:16 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
: IBM Mainframe Discussion List On Behalf Of
ITschak Mugzach
Sent: Tuesday, December 10, 2024 12:16 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
Let your auditor access to the smp log files and find the answer himself.
ITschak
*| **Itschak Mugzach | Director | SecuriTeam Software
Thanks Kurt. That was a head slapper….
Dave Jousma
Vice President | Director, Technology Engineering
From: IBM Mainframe Discussion List on behalf of
Kurt Quackenbush
Date: Tuesday, December 10, 2024 at 1:58 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
> is ther
arc-requ...@listserv.ua.edu>
Date: Tuesday, December 10, 2024 at 2:03 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
SMPE List Log statement:
https://urldefense.com/v3/__https://www.ibm.com/docs/en/zos/2.5.0?topic=syntax-smplog__;!!MwwqYLOC6b
SMPE List Log statement:
https://www.ibm.com/docs/en/zos/2.5.0?topic=syntax-smplog - As I'm sure you
know typically there is a separate log for each zone - Global, Target, DLIB
Also, not sure if I understood correctly but I never recommend putting SMPE
logs (or CSI's) onto sysres volume - usual
> is there a IBM provided utility to print with formatting the SMP LOGS?
Yes, the SMP/E LIST LOG command.
https://www.ibm.com/docs/en/zos/3.1.0?topic=commands-log-command
Kurt Quackenbush
IBM | z/OS SMP/E and z/OSMF Software Management | ku...@us.ibm.com
Chuck Norris never uses CHECK when he
Jousma, David <01a0403c5dc1-dmarc-requ...@listserv.ua.edu>
Date: Tuesday, December 10, 2024 at 1:46 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
Not a bad idea going forward Steve. I may just supersize my SMP Log files.
They’ve been pitifully smally historically
ct: Re: SMPE and auditors
Dave,
Two quick thoughts:
1. Might be good to post this on the RACF forum as my guess is it is a more
"auditor" knowledgeable audience over there and possible ways to best handle...
2. Even though you don't have SMPLOG's as far back as he wants
ma
> Vice President | Director, Technology Engineering
>
>
>
>
>
> From: IBM Mainframe Discussion List on behalf
> of Kurt Quackenbush
> Date: Tuesday, December 10, 2024 at 1:22 PM
> To: IBM-MAIN@LISTSERV.UA.EDU
> Subject: Re: SMPE and auditors
>
>
>
> &g
behalf of
Kurt Quackenbush
Date: Tuesday, December 10, 2024 at 1:22 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
> Well, what he was wanting to see was all the listings to see that there were
> no BYPASS HOLD ERROR specified.
You can't get this kind of info f
> Well, what he was wanting to see was all the listings to see that there were
> no BYPASS HOLD ERROR specified.
You can't get this kind of info from the CSI, so they'd have to review the
SMPLOGs or APPLY output listings. But it sure seems like an odd request to me.
Why not check the results
Dave,
Two quick thoughts:
1. Might be good to post this on the RACF forum as my guess is it is a more
"auditor" knowledgeable audience over there and possible ways to best handle...
2. Even though you don't have SMPLOG's as far back as he wants - I would still
send him what you have. Hopefull
ely write a Risk acceptance
> for that.
>
> Dave Jousma
> Vice President | Director, Technology Engineering
>
>
>
>
>
> From: IBM Mainframe Discussion List on behalf of
> ITschak Mugzach <05a7ced721d8-dmarc-requ...@listserv.ua.edu>
> Date: Tuesday, Decembe
requ...@listserv.ua.edu>
> Date: Tuesday, December 10, 2024 at 12:16 PM
> To: IBM-MAIN@LISTSERV.UA.EDU
> Subject: Re: SMPE and auditors
>
>
>
> Let your auditor access to the smp log files and find the answer himself.
>
>
>
> ITschak
>
>
>
>
M-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
Let your auditor access to the smp log files and find the answer himself.
ITschak
*| **Itschak Mugzach | Director | SecuriTeam Software **|** IronSphere
Platform* *|* *Information Security Continuous Monitoring for Z/OS, zLinux
and
Classification: Confidential
That is a rather amazing thing. That an auditor can even spell s-m-p-e
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
Phil Smith III
Sent: Tuesday, December 10, 2024 11:21 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
Can we first stop and be impressed that an auditor understands enough to ask
about this?
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
ITschak Mugzach
Sent: Tuesday, December 10, 2024 12:16 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: SMPE and auditors
Let your
Let your auditor access to the smp log files and find the answer himself.
ITschak
*| **Itschak Mugzach | Director | SecuriTeam Software **|** IronSphere
Platform* *|* *Information Security Continuous Monitoring for Z/OS, zLinux
and IBM I **| *
*|* *Email**: i_mugz...@securiteam.co.il **|* *Mob*
All,
I have an auditor that would like to see if there were any PTF’s applied in my
environment where BYPASS HOLDERROR was specified. Its not enough for me to
tell them that there weren’t any. I have been playing around with SMPE list
commands, and can list PTF’s where BYPASS was specified,
25 matches
Mail list logo
