LISTSERV - HP3000-L Archives

HP3000-L Archives

October 2000, Week 4

HP3000-L@RAVEN.UTC.EDU

	LISTSERV Archives
	HP3000-L Home
	HP3000-L October 2000, Week 4

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: PING.NET.SYS
From:	"Emerson, Tom # El Monte" <[log in to unmask]>
Reply To:	Emerson, Tom # El Monte
Date:	Thu, 26 Oct 2000 15:30:12 -0400
Content-Type:	text/plain
Parts/Attachments:	text/plain (100 lines)

What might have tripped you up would be PH capability (process handling) --
it can be added to either a program or a user and acts accordingly.
Generally, if the program "needs" to launch a sub-process, and the "only"
sub process it launches is a well known or "safe" process, you would give
the program PH so that "users" don't need that capability.

OTOH: for programs such as EDITOR which allow you to run an "arbitrary"
program (via ":RUN" at the "/" prompt) you want to REMOVE PH so "normal"
users can't "hack" into your system (i.e., if you've got a 'secure' menu
system in place that allows users access to certain applications only, and
one of those apps happens to be editor, a 'wiley hacker/user' could ":RUN
CI.PUB.SYS" and get a command prompt...)

In this second case, a USER with PH capability could use the ":RUN"
capability of the editor.

> -----Original Message-----
> From: Dave Darnell [mailto:[log in to unmask]]
> Sent: Thursday, October 26, 2000 12:07 PM
> To: [log in to unmask]
> Subject: Re: [HP3000-L] PING.NET.SYS
>
>
> OK, OK! I concede.
>
> I just remembers (maybe not too clearly) that either a
> program or the user
> could have the required capabilities, and they could be added
> to the program
> with MPEX or LINKEDIT.
>
> It does seem unlikely that even MPEX can add a "user" attribute to a
> program.
>
> Dave Darnell
>
> > -----Original Message-----
> > From: Rich Trapp [mailto:[log in to unmask]]
> > Sent: Thursday, October 26, 2000 11:59 AM
> > To: [log in to unmask]
> > Subject: Re: PING.NET.SYS
> >
> >
> > Except that NA and NM are USER attributes..not program
> > attributes...:-(
> >
> > RAT
> >
> > ______________________________________________________________
> > _________
> >  Rich Trapp "RAT"
> >  Managed Business Solutions   [log in to unmask]
> http://www.mbsnav.com
>  Assigned to Design Automation Support at Agilent Technologies
>  Telnet or 970-679-2221 [log in to unmask]
> Loveland, CO USA
>
> ______________________________________________________________
> _________
>
> -----Original Message-----
> From: Patrick Santucci [mailto:[log in to unmask]]
> Sent: Thursday, October 26, 2000 11:52 AM
> To: [log in to unmask]
> Subject: Re: PING.NET.SYS
>
>
> Dave Darnell wrote:
>
> > I know I can't add NM or NA capability to a program with
> linkedit, but
> > how about MPEX?
> >
> > point being, can we add NA and NM to a copy of PING?
>
> Yes. From MPEX "help":
> ---
> CHANGING PROGRAM FILES' CAPABILITIES (;CAP=)
>
> Syntax:   %ALTFILE fileset;CAP={[+|-][IA,BA,PH,PM,MR,DS]}
>
> Examples: %ALTFILE AP010P; CAP=+PH,DS
>           %ALTFILE @.UTIL.SYS(ISPROG); CAP=-PM,PH,MR,+DS
> ---
>
> So all you need do is %ALTFILE PING.group.account;CAP=+NA,NM
>
> HTH,
> Patrick
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Patrick Santucci
> HP e3000 Systems Administrator
> Cornerstone Consolidated Services Group, Inc.
> 5568 West Chester Rd.
> West Chester, OH  45069-2914
> phone:  (513) 603-1138
> fax:    (513) 603-1495
> mailto:[log in to unmask]
>

ATOM RSS1 RSS2

RAVEN.UTC.EDU