Jon said:
> One refinement I would suggest is that security *should* be there, but it
> should be done with ACD's, e.g. :ALTSEC MYJOBQ,STREAMQ;NEWACD=...
 
Yes, I was going to suggest that if they do want to do security, that the
ACD mechanism (as Jon suggests) is exactly the mechanism to do this.  They
could either create a new class of thing called a 'job queue' that you
could add ACDs to, or it might be worth doing something simple like:
 
In order for QUEUE security to be in effect, you have to create an MPE GROUP
named QUEUE.SYS.  When a QUEUE name is referenced in :STREAM, it would only
be valid if there exists a file queuename.QUEUE.SYS, which is writeable by
the user doing the :STREAM (or should it be by the job being streamed. It's
not obvious which it should be, either from their way of doing it or mine).
You simply put ACDs on the dummy files in the QUEUE.SYS group to control
who has access to which QUEUEs.  Obviously this is a bit of a kludge, but
it sure would be easier to implement if cost is a sinificant issue.
 
G.