CHECKSAP: check program special access privileges

Description

Produces a listing of programs with special access privileges assigned by the Wang SECURITY utility.

Categories

Security
System Operation

Related files

CHECKSAP: Object file for utility.

User Instructions

At VOLUME screen, enter the name of the volume to be examined or PF(16) to exit without processing. Listing will appear in the user's default spool library.

Programmer Instructions

CHECKSAP consists of only one screen, a prompts for the volume to be examined. Produces a short listing showing the names and locations of files and their access rights. This is a GETPARM screen, so the utility may be used under program control.

VOLUME      Press (RETURN) to continue, PF(16) to end without
            processing.

  VOLUME    (blank)     The volume to be examined.

The listing contains the file, library, volume, and a array of file access privileges by file class ('A' through 'Z').

Example of use

In some systems, the users have no rights to the system's data except through the rights granted the programs they are allowed to run. In these cases, the special access privileges assigned to programs is information vital to the proper performance of the system. CHECKSAP allows the System Administrator to monitor these programs easily by listing all such programs on a given volume.

CHECKSAP might also be used to make sure that no programs enter the system with extraordinary rights. For example, a procedure might be run regularly that checks the access rights of programs on each individual volume, producing listings that would be monitored for possible security violations.

Comments

Security tool for identifying programs that allow access rights beyond the user's own. The listing should be filed with other contingency information so that program access rights can be updated quickly if lost.