For a set of FREE utilities, try
http://www.denkor.com/hp3000/command_files/index.html. I modified
http://www.denkor.com/hp3000/command_files/XEQs/setapass.txt to provide this
function.
Thanks Lars! Thanks Denkor!
YMMV,
Rich Rankin
HP Systems Administrator
Clark County Office of Budget and Information Services
> -----Original Message-----
> From: Emerson, Tom # El Monte [mailto:[log in to unmask]]
> Sent: Tuesday, March 07, 2000 11:39 AM
> To: [log in to unmask]
> Subject: Re: LIST all MANAGER.SYS logon's
>
>
> > -----Original Message-----
> > From: Reynold, James [mailto:[log in to unmask]]
> > Well this is what I returned when I tried it at the :
> > prompt...looks like it worked.
> >
> > [MER]:LISTUSER @.SYS > X
> > [MER]:GREP 'SM' < X
> > CAP: SM,AM,AL,GL,DI,OP,CV,UV,LG,PS,NA,NM,CS,ND,SF,BA,IA,PM,MR,DS,PH
> > [MER]:
>
> (ahem) what "worked"? the above output doesn't show WHICH user has SM
> capability, just that "some" user within the SYS account has
> SM capability
> [and a host of others to boot!] For all you know, this could
> mean the user
> MANAGER.SYS, OPERATOR.SYS, or HACKER.SYS! (OTOH, this shows
> that ONE and
> ONLY ONE user has SM cap, otherwise there would have been
> multiple "CAP:"
> lines)
>
> What's needed is either some "context" around where this line
> was found [x
> lines before or after], or a choice of multiple "words" to
> chose from (i.e.,
> either "USER:" or "CAP:", which would condense the normal MPE listuser
> output down to the two lines you are interested in)
>
> Unfortunately, all this amounts to is "re-inventing the
> wheel" -- there are
> at least two third-party tools which do this and more [the
> aforementioned
> VEAUDIT being one, and I'll bet Montery's SAFE/3000 does this
> as well even
> though I've never seen that product] For instance, "OP"
> users are really
> half-SM users -- they can CREATE files/groups/accounts as
> well as READ any
> file on the system [well, the first line at least...]
>
> > -----Original Message-----
> > From: Mike Reaser
> > Sent: Tuesday, March 07, 2000 9:54 AM
> > To: [log in to unmask]
> > Subject: Re: LIST all MANAGER.SYS logon's
> >
> >
> > Erik Vistica <[log in to unmask]> wrote:
> > > VEAUDIT or MPEX may be able to help if. For pure MPE you could try
> > > something like (untested):
> >
> > > :LISTUSER @.@ > X
> > > :GREP 'SM,' X
> > > :GREP 'OP,' X
> >
> > "Pure MPE" gives me the dreaded "Unknown command name. (CIERR 975)"
> > on the :GREP command.
> >
> > Mayhaps you were thinking of doing these under the Posix shell? :-)
>
|