Safeguard Reference Manual (G06.24+, H06.03+ )

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series

301

302

303

304

305

306

307

308

309

310

Safeguard Reference Manual—520618-013

9-1

Disk Volume and Subvolume

Security Commands

SAFECOM volume and subvolume security commands control who can create and

access disk files. The disk volume and subvolume commands also specify when the

Safeguard software should audit attempts to create or read volume or subvolume

authorization records.

By default, only a local super-group user can add a volume authorization record to the

Safeguard object database, but any user can add a subvolume authorization record.

However, through the use of an access control list (ACL) for the OBJECTTYPEs

VOLUME and SUBVOLUME, this behavior can be modified. For more information, see

Section 12, OBJECTTYPE Security Commands. After a record is added, all attempts

to create or own files on that volume or subvolume are subject to a Safeguard

authorization check and, optionally, to Safeguard auditing.

This section describes volume and subvolume ownership and how the Safeguard

software authorizes attempts to create or access disk files on protected volumes and

subvolumes. It also summarizes the volume and subvolume security commands.

Following the command summary, each command is described in detail.

Volume Authorization Record Ownership

A disk volume has no owner until a local super group user places the volume under

Safeguard control. By default, only a local super group user can add a disk volume

authorization record. (For more information about controlling this class of objects, see

VOLUME on page 12-2.) Every Safeguard object access authorization record contains

an OWNER attribute. The OWNER attribute contains the user ID of the user who can

manage the Safeguard access controls for the disk volume.

However, the user who adds the record can set the OWNER attribute to the user ID of

any user (by including an OWNER specification in a SET VOLUME or ADD VOLUME

command). Thus the owner of a disk volume might not be a local super group user.

The owner of a protected disk volume authorization record, the owner’s group

manager, and the super ID can transfer ownership to another user by changing the

OWNER attribute through the ALTER VOLUME command.

In addition, the initial owner can add owners to an ACL. Additional ownership is defined

by the OWNER authority code for ACL entries and is an independent extension of the

initial owner. Additional owners can do anything that the initial owner is permitted to do.

They are equal, in every way, to the initial owner. For example, they can modify the

Safeguard authorization records for any volume they own, and they can access any

volume they own when that volume has been frozen.

The OWNER authority can be used to deny explicitly a local super ID any of the

authorities implicitly granted to the super ID, including OWNER. The OWNER authority