Owner's manual
Securing Disk Files
Safeguard User’s Guide — 422089-020
3 - 2
Table 3-2 shows the disk-file security attributes you can control. This section describes
these attributes and explains how to set them using the commands listed in Table 3-1.
The audit attributes are explained in detail in the Safeguard Audit Service Manual.
You can abbreviate any SAFECOM command, attribute, or keyword. Usually, any such
reserved word can be abbreviated to its first three characters. Some abbreviations
must be more than three characters so that the Safeguard software can distinguish
between similar reserved words, such as DISKFILE and DISPLAY. The shortest
abbreviation allowed for DISKFILE is DISK. The shortest abbreviation for DISPLAY is
DISP. When a reserved word is hyphenated, do not omit any hyphens. Each
component of a hyphenated word must have at least its first three characters. The
shortest possible abbreviation for AUDIT-MANAGE-PASS is AUD-MAN-PAS.
SET DISKFILE Establishes default disk-file attributes that you specify. Any
subsequent ADD DISKFILE commands use these defaults for
attributes not specified in the ADD DISKFILE command.
SHOW DISKFILE Displays the current default attributes for disk files. Any
sub
sequent ADD DISKFILE commands use these defaults for
attributes not specified in the ADD DISKFILE command.
THAW DISKFILE Restores disk-file access authorities fo
r users on the access
control list.
Note.
The disk-file commands can be entered with either DISKFILE or DISCFILE because
SAFECOM accepts either spelling. The examples in this book use DISKFILE.
Table 3-2. Disk-File Attributes (page 1 of 2)
Attribute Function
OWNER Transfers ownership or gives another user OWNER authority to
a file.
ACCESS Grants users access authority to a file.
AUDIT-ACCESS-PASS Specifies auditing of successful attempts to access a file.
AUDIT-ACCESS-FAIL Specifies auditing of unsuccessful attempts to access a file.
AUDIT-MANAGE-PASS Specifies auditing of successful attempts to change a file's
autho
rization record.
AUDIT-MANAGE-FAIL Specifies auditing of unsuccessful attempts to change a file's
autho
rization record.
CLEARONPURGE Specifies that null characters are to be written over the space
allocate
d to a purged file.
^
Supported only on systems running H06.11 and later H-series RVUs and G06.32 and later G-series RVUs.
^^
Supported only on systems running J06.05 and later J-series RVUs, H06.16 and later H-series RVUs, and
G06.32 and later G-series RVUs.
Table 3-1. Disk-File Commands (page 2 of 2)
Command Action