Safeguard Reference Manual (G06.24+, H06.03+ )

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series

371

372

373

374

375

376

377

378

379

380

Process and Subprocess Security Commands

Safeguard Reference Manual—520618-013

11-2

Process and Subprocess Access Authorities

The ACL for a process name can grant any combination of these access authorities to

users and user groups:

Creating a Process With a Protected Name

When a user attempts to create a process that has a protected process name, the

Safeguard software checks the ACL for that process name to determine that the user

has CREATE authority for the process name. If the user does have CREATE authority,

the Safeguard software allows the process to be created. If the user does not have

CREATE authority, the user’s process-creation request is rejected with a security

violation error (file error 48).

Access to a process or subprocess that is running under a protected name is

controlled by the ACL defined for that process or subprocess name.

Opening a Process or Subprocess That Has a Protected Name

When a process attempts to open another process or subprocess running under a

protected name, the Safeguard software checks the ACL for the protected process

name to determine whether the appropriate authority is granted to the user identified

by the process accessor ID (PAID) of the process requesting the open. If the open

request is for read and the user has READ authority, the request is allowed to

complete successfully. If the open request is for write and the user has WRITE

authority, the request is allowed to complete successfully. If the user identified by the

PAID of the opening process does not have the proper authority, the Safeguard

software rejects the open request with a security violation error (file error 48). For more

information on process and creator accessor IDs, see the Security Management

Guide.

If the process is opened for read, the file system allows both read and write operations.

Therefore, the process itself must enforce the distinction between an open for read and

an open for write.

READ Open a process or subprocess with a protected name for input

operations.

WRITE Open a process or subprocess with a protected name for output

operations.

CREATE Create a process with a protected name. (A user must also have

EXECUTE authority for the program object disk file to execute the

process.) Not applicable to subprocesses.

PURGE Stop a process with a protected name. Not applicable to subprocesses.

OWNER Manage the authorization records.