Safeguard Reference Manual (G06.24+, H06.03+ )
Disk-File Security Commands
Safeguard Reference Manual—520618-013
8-33
ALTER DISKFILE-PATTERN Command
AUDIT-MANAGE-FAIL [audit-spec]
changes the audit-spec for unsuccessful attempts to manage (change or
read) a diskfile-pattern authorization record. The form of audit-spec is:
{ ALL | LOCAL | REMOTE | NONE }
For a description of audit-spec, see the SET DISKFILE Command on
page 8-55. Omitting audit-spec specifies NONE.
WARNING-MODE { ON | OFF }
defines whether warning mode is enabled for the specified diskfile pattern. The
value is required. For more information on warning mode, see the Safeguard
Administrator's Manual.
ON enables warning mode for the specified diskfile pattern. The initial value is
OFF, which disables warning mode for the specified diskfile pattern.
Considerations
•
Altering a disk file that is currently open
Using ALTER DISKFILE-PATTERN to change one or more attributes for a disk file
described by that pattern has no effect on any users currently accessing the disk
file. (That is, changing file security attributes has no effect on processes that
currently have the disk file open.)
For example, if you change a disk-file ACL to deny Read access to a user who is
running a process that is currently accessing the file, the process can continue
accessing the file until it closes the file. However, when the process attempts to
reopen the file for Read access, the Safeguard software returns a security violation
(file error 48).
Examples
1. To alter a diskfile pattern to give SUPER.SUPER read and write access:
ALTER DISKFILE-PATTERN $DATA.APLOGS.LOG*, &
ACCESS SUPER.SUPER (R,W)
2. To alter all diskfile pattern that match $DATA*.APLOGS.LOG*:
ALTER DISKFILE-PATTERN $DATA*.APLOGS.LOG*, ALL, &
ACCESS SUPER.SUPER (R,W)
The above command would alter the diskfile patterns for all matching patterns. For
example, if these patterns exist, then they would be altered:
•
$DATA01.APLOGS.LOGAPR*
•
$DATA1.APLOGS.LOG*