CHECKSAP: check program special access privileges
Description
Produces a listing of programs with special access privileges
assigned by the Wang SECURITY utility.
Categories
Security
System Operation
Related files
CHECKSAP: Object file for utility.
User Instructions
At VOLUME screen, enter the name of the volume to be
examined or PF(16) to exit without processing. Listing will
appear in the user's default spool library.
Programmer Instructions
CHECKSAP consists of only one screen, a prompts for the
volume to be examined. Produces a short listing showing the
names and locations of files and their access rights. This
is a GETPARM screen, so the utility may be used under program
control.
VOLUME Press (RETURN) to continue, PF(16) to end without
processing.
VOLUME (blank) The volume to be examined.
The listing contains the file, library,
volume, and a array of file access privileges by file class
('A' through 'Z').
Example of use
In some systems, the users have no rights to the system's
data except through the rights granted the programs they are
allowed to run. In these cases, the special access
privileges assigned to programs is information vital to the
proper performance of the system. CHECKSAP allows the System
Administrator to monitor these programs easily by listing all
such programs on a given volume.
CHECKSAP might also be used to make sure that no programs
enter the system with extraordinary rights. For example, a
procedure might be run regularly that checks the access
rights of programs on each individual volume, producing
listings that would be monitored for possible security
violations.
Comments
Security tool for identifying programs that allow access
rights beyond the user's own. The listing should be filed
with other contingency information so that program access
rights can be updated quickly if lost.